AMD recently made a change that flew under the radar for most users — and that's precisely the problem. Through a routine AGESA firmware update, AMD quietly disabled Secure Memory Encryption (SME) on consumer Ryzen processors. No changelog entry. No security advisory. No public explanation. Engineers who were asked about the change reportedly went silent, leaving users and the security community piecing together what actually changed and why.
For a feature specifically designed to protect sensitive data in RAM, removing it without so much as a whisper is a significant transparency failure — regardless of the technical justification behind the decision.
SME is a hardware-level feature built into AMD processors that encrypts data sitting in system memory (RAM). The idea is straightforward: even if an attacker gains physical access to a machine or exploits a vulnerability that lets them read raw memory contents, the data they extract is encrypted and therefore useless without the correct key.
This matters most in scenarios like:
SME is distinct from AMD's SEV (Secure Encrypted Virtualization), which is aimed at server and cloud workloads. SME was the consumer-facing equivalent, baked into Ryzen chips to give everyday users and workstation operators a meaningful layer of defense.
The technical debate about whether SME was ever fully effective on consumer hardware is legitimate. Some researchers have noted that SME's protection model has nuances — it isn't a silver bullet. AMD may have had real engineering reasons to disable or depreciate the feature.
But that's not really the point.
When a security-relevant feature is removed — even a flawed one — users deserve to know. Security posture is cumulative. IT administrators, security-conscious developers, and enterprise buyers make decisions based on documented hardware capabilities. If a feature disappears silently through a firmware update, those decisions become invalid overnight without anyone being notified.
This is especially problematic because firmware updates are often pushed automatically or strongly recommended as essential for stability and security patches. Users who dutifully kept their systems up to date may have unknowingly traded away a security feature while trying to stay protected.
The broader principle here extends well beyond AMD or this specific feature. The technology industry has increasingly recognized that security through obscurity is not security. When vendors make changes that affect a system's threat model, the responsible path is clear communication — a CVE if applicable, a security advisory at minimum, or at least honest release notes.
This standard is well-established in software. Operating system vendors, open source projects, and cloud providers all maintain detailed changelogs for security-relevant modifications. Hardware and firmware have lagged behind, often treating internal changes as proprietary even when they directly affect user safety.
AMD's silence here fits an unfortunate pattern across the chip industry where firmware is treated as a black box. That attitude is increasingly incompatible with a world where hardware supply chains are under scrutiny and memory-level attacks are well-documented techniques used by sophisticated adversaries.
If you're running a consumer Ryzen system and rely on SME as part of your security architecture, it's worth taking a few steps:
This story is a reminder that security isn't just about features being present — it's about knowing what protections you actually have at any given moment. Firmware is foundational to everything running above it, including operating systems, applications, and yes, the AI inference workloads and API-driven services that increasingly run on local and on-premise hardware.
For developers and organizations building on top of hardware infrastructure, trust in that foundation requires more than performance benchmarks. It requires vendors who communicate clearly when something changes beneath your feet.
AMD should break its silence, document what changed and why, and commit to a more transparent firmware disclosure process going forward. Until then, verify — don't assume.
Inspired by tomshardware.com
One API key, 100+ models from Anthropic, OpenAI, Google, DeepSeek and more.