Bitlocker Admins, beware:
https://www.youtube.com/watch?v=wTl4vEednkQ some Swiss techie has optimized the TPM-sniffing method so that it takesjust a few seconds to get the volume master key, when TPM-only protection is used on certain Lenovo laptop models. He even sells the attack devices and teaches others.
So think twice: would you really want to rely on TPM only? And if so: shouldn't you rather switch to the hardware-less fTPM solutions?