Specialized chip on a computer's motherboard providing hardware-based security functions including cryptographic key generation, secure boot verification, and platform attestation.