Differences between firmware-based TPM and hardware-based TPM
Differences between firmware-based TPM and hardware-based TPM
I'm not sure about that. I don't have the hardware to try it out. TPM will be handled automatically by the Windows Hello feature in Windows 11. Windows 10 will rely on TPM for "Windows Hello Business" in a corporate setting with domain integration. That's accurate. Please note: Secure Boot isn't a Windows capability—it belongs to UEFI. Windows 8 was the first version to support it among other UEFI features.
Yes, you're correct. You can install Windows 11 without requiring TPM, and you can enable it later if needed.
Software provides strong backing for even focused TPM modules. Your CPU typically includes a distinct ARM core functioning as a security processor—AMD uses PSP and Intel uses ME—that continuously runs software to support the hardware TPM.