AMD removes memory encryption from consumer Ryzen CPUs

AMD's recent AGESA firmware update disables Secure Memory Encryption (SME) on consumer Ryzen CPUs. The change was rolled out without a public announcement, and the firmware notes contain no mention of the feature being removed. [Tom's Hardware]

SME encrypts data stored in RAM to block unauthorized reads. With SME disabled, memory contents remain in clear text, exposing systems to attacks such as cold‑boot and direct‑memory‑access that can capture sensitive information. This loss of protection matters for users who run confidential workloads or share devices in public environments. [Tom's Hardware]

AMD has not responded to inquiries from the tech press about the decision. The silence has heightened concerns among security‑focused engineers who count on SME as a baseline safeguard.

The removal could diminish Ryzen's appeal in enterprise settings where encrypted memory is often a procurement requirement. Organizations may need to verify the presence of SME on new hardware or consider alternative platforms that retain the feature.

No mitigation or replacement is offered in the firmware release notes. Users must either revert to an earlier AGESA version that retains SME or accept the reduced security posture of their systems.