Updates for Surface Pro 4 and Surface Studio (07 December 2017)


We've released new driver and firmware updates for Surface Pro 4 and Surface Studio.

These updates include drivers for Intel(R) Management Engine Interface, Surface dTPM (IFX), Surface Embedded Controller Firmware, Surface Integration, Surface Management Engine, Surface System Aggregator Firmware, and Surface UEFI on Surface Pro 4 devices running Windows 10 Anniversary Update (Version 1607) or above and Intel(R) Precise Touch Device on Surface Pro 4 devices running Windows 10 Fall Creators Update (Version 1709) and above. These updates improve reliability, recovery from Connected Standby, multi-touch and pen connectivity when the device wakes from sleep, and resolve potential security vulnerabilities on Surface Pro 4.

These updates include drivers for Intel(R) Management Engine Interface, Surface dTPM (IFX), Surface Management Engine, and Surface UEFI on Surface Studio. These updates improve recovery from Connected Standby and resolve potential security vulnerabilities on Surface Studio.

For Surface Pro 4, the updates are available in MSI and ZIP formats from the Surface Pro 4 Drivers and Firmware Page in the Microsoft Download Center. Click Download to download the following files:

  • SurfacePro4_Win10_14393_1708001_0.msi
  • SurfacePro4_Win10_14393_1708001_1.zip
  • SurfacePro4_Win10_15063_1708201_0.msi
  • SurfacePro4_Win10_15063_1708201_1.zip
  • SurfacePro4_Win10_16299_1709001_0.msi

For Surface Studio, the updates are available in MSI and ZIP format from the Surface Studio Drivers and Firmware Page in the Microsoft Download Center. Click Download to download the following files:

  • SurfaceStudio_Win10_14393_1709506_0.msi
  • SurfaceStudio_Win10_15063_1709506_0.msi
  • SurfaceStudio_Win10_16299_1709506_0.msi

You can identify which file to download for your device by the build number located in the file name. This build number represents the minimum build of Windows required to install the drivers and firmware within that file. For example, the file SurfaceStudio_Win10_16299_1709506_0.msi has a minimum build of 16299, in other words Windows 10 Version 1709 or the Fall Creators Update. You can find a full list the build numbers for each Windows 10 version at the Windows 10 release information page.

Note: These updates to TPM firmware will require the device to restart twice to complete installation.

Important!
Installation of a TPM firmware update on devices in one of the following unrecommended conditions may result in devices entering a condition where devices boot to BitLocker Recovery, but are unable to boot to Windows even when the correct recovery key is entered.

  • Your device is configured for BitLocker Drive Encryption and is configured with a platform validation profile that uses Platform Configuration Register (PCR) values that differ from the default and recommended configuration of PCR 7 and PCR 11.
  • Your device is configured for BitLocker Drive Encryption and has Secure Boot disabled.

If your device meets one of these conditions, you will need to suspend BitLocker before installing this update. It is highly recommended that devices in these conditions are returned to the default, recommended configuration with Secure Boot enabled and validation using PCR 7 and 11. Configuration of Secure Boot or BitLocker PCR values other than default are not-recommended on Surface devices.

For more information regarding correcting these conditions or if your device has entered a BitLocker Recovery state after installing these updates that is unable to boot to Windows, even when you enter the correct recovery key, see KB4052978.

 

Surface Pro 4:

  • Intel(R) Management Engine Interface (v11.7.0.1040) is required for UEFI update, and improves recovery from Connected Standby.
  • Intel(R) Precise Touch Device (v1.2.0.99) improves multi-touch and pen connectivity when the device wakes from sleep.
  • Surface dTPM (IFX) (v5.62.3126.2) resolves potential security vulnerabilities, including the issue that is described in Microsoft security advisory 170012.
  • Surface Embedded Controller Firmware (v103.1791.258.0) improves system reliability.
  • Surface Integration (v1.0.171.1) improves system reliability for devices on Windows 10 Anniversary Update 1607.
  • Surface Management Engine (v11.7.4.3330) resolves potential security vulnerabilities, including the issue that is described in Microsoft security advisory 170012.
  • Surface System Aggregator Firmware (v103.1837.257.0) resolves potential security vulnerabilities, including the issue that is described in Microsoft security advisory 170012.
  • Surface UEFI (v108.1866.769.0) resolves potential security vulnerabilities, including the issue that is described in Microsoft security advisory 170012.

Surface Studio:

  • Intel(R) Management Engine Interface (v11.7.0.1040) is required for UEFI update, and improves recovery from Connected Standby.
  • Surface dTPM (IFX) (v5.62.3126.2) resolves potential security vulnerabilities, including the issue that is described in Microsoft security advisory 170012.
  • Surface Management Engine (v11.7.4.3330) resolves potential security vulnerabilities, including the issue that is described in Microsoft security advisory 170012.
  • Surface UEFI (v118.1866.770.0) resolves potential security vulnerabilities, including the issue that is described in Microsoft security advisory 170012.

3/12/2018 – Correction: Surface Pro 4 devices running Windows 10 Version 1607 will receive the new version of the Surface Integration Driver, v1.0.171.0, when installing drivers via the MSI or via Windows Update. Devices running Windows 10 Version 1703 or Windows 10 Version 1709 will continue to receive v1.0.170.0, released previously in October.

Comments (15)

  1. cheong00 says:

    Hope Surface Pro 3 will get type cover fix soon. I’ve been relying on touch screen keyboard and it’s really painful for me.

    Who expected updating to CU will break my original type-cover that works on Win10AU.

  2. tenbrink says:

    I’m sorry but there are no improvements to Connected Standby on my SP4. The reintroduction of Sleep of Death from the October firmware updates is still at 100% i.e. I have to force shutdown every time so I still have to disable sleep completely. Hibernate is the only reliable option (please don’t break hibernate). The Embedded Controller firmware is the same version as the October release. Please allow firmware rollbacks.

  3. tenbrink says:

    Also, SurfacePro4_Win10_16299_1709001_0.msi does not include Surface Integration v1.0.171.1 but v1.0.170.0.

  4. Mike says:

    Does applying these updates to an SP4 completely remedy the issues described in Microsoft security advisory 170012, or are further firmware/OS updates required?

    After applying this patch, do we need to follow step 6 in the advisory, and clear the TPM?

    Thanks!

    1. It is recommended to follow the advisory, including the operating system patches and clearing the TPM.

  5. cestMoi says:

    Where is SurfacePro4_Win10_16299_1709001_0.zip? Very useful for new surface OSD’s.

    1. Beginning in 2018, all Surface driver and firmware packs will be released in MSI format only.

      The MSI, just like the ZIP, contains all of the individual files needed for OSD or MDT deployments.

      Use msiexec /a to extract the individual drivers for deployment scenarios.

  6. PRMOrangish says:

    Brandon,

    1) Does the Surface dTPM (IFX) (v5.62.3126.2) for the SP4 completely resolve the Infineon TPM issue? (Firmware and software)?
    2) Do we still need to clear the TPM as per step 6 of the advisory, or was that handled automatically by the update?

    Thanks in advance – it’s been really hard getting clarification on this – support is apparently unaware of the issue entirely.

    1. That is correct, per Step 6 of the advisory, after installation of these updates it is recommended to clear the TPM, removing any stored weak keys and prompting generation of new, full strength keys.

  7. SD says:

    Hello,
    I am unable to find SurfacePro4_Win10_16299_1709001_0.ZIP on the download site. My surface pro 4 has several devices not working after an update to Win10 1709 build 16299. Devices not working include:
    audio,
    WiFi,
    I2C,
    Intel Management Engine Interface,
    I have tried installing SurfacePro4_Win10_16299_1709001_0.msi but to avail. Is there a way to completely uninstall the previous drivers and reinstall a cumulative driver set for build 16299?
    thanks,
    -SD

    1. Installation of the latest MSI will provide a cumulative driver set that will update any older drivers on the system to the version included in the MSI.

      If you wish to attempt installation of individual driver files, as you would from a ZIP file, you can easily extract the individual driver files from the MSI using msiexec /a.

      If you have successfully installed SurfacePro4_Win10_16299_1709001_0.msi and yet are continuing to experience issues, you may want to attempt a device reset or to contact support.

  8. Aaron says:

    This issue is still not resolved installing the firmware update and rescanning the Surface Pro 4 with the Intel tool still lists it as vulnerable. When is Microsoft going to resolve this?

  9. Lee Bowman says:

    How do you prevent the Device Manager pop-ups when the Platform Installer is updating the drivers? When the Platform Installer is being installed via SCCM, the individual driver updates generate Toast Notifications and the user is restarting before it has fully completed

  10. Cartaphilius says:

    ETA for Surface Pro 4 firmware update for Windows 10 version 1803?

Skip to main content