This inadvertently causes the TPM to enter a locked state after 32 failed attempts.Īttempts to use a key with an authorization value for the next two hours would not return success or failure instead the response indicates that the TPM is locked. For each of the 32 attempts, the TPM records if the authorization value was correct or not. This means that a user could quickly attempt to use a key with the wrong authorization value 32 times.
For TPM 2.0 devices (which is what you'd get in a 2018 laptop), this seems to be the most up-to-date description.įor systems with TPM 2.0, the TPM is configured by Windows to lock after 32 authorization failures and to forget one authorization failure every two hours.
