Users and security professionals are raising alarms after discovering that AMD appears to have quietly removed a key memory encryption feature from its latest consumer processors — a move critics say erodes trust and leaves everyday systems with weaker baseline protections than their predecessors.
The controversy centres on Transparent Secure Memory Encryption (TSME), a technology that automatically encrypts data while it resides in RAM. According to a detailed investigation by Ars Technica and corroborating community testing, TSME — which was available in earlier consumer Ryzen generations — has been dropped from current product lines such as the Ryzen 9000 series without any official announcement, specification update, or public explanation from AMD.
TSME is designed to protect sensitive data in active memory, defending against physical attacks in which an adversary could extract information directly from RAM modules. It offers a security layer fundamentally different from full-disk encryption, which only safeguards data when a machine is powered off. Removing the feature from consumer chips effectively widens the security gap between AMD's desktop and laptop processors and its professional PRO and EPYC server lines, where the capability remains intact.
The central grievance among affected users is not merely the decision to differentiate product tiers, but the apparent lack of candour. AMD's published specifications for the impacted consumer processors still reference support for "AMD Memory Guard," a broad marketing term that encompasses memory encryption capabilities. Critics argue this creates a misleading impression of feature parity with earlier generations — a distinction that matters significantly for users selecting hardware for privacy-sensitive workloads or small-business deployments where enterprise silicon is not a practical option.
Segmenting performance or productivity features across product lines is standard industry practice. However, applying the same strategy to foundational security mechanisms raises ethical questions, particularly when marketing language obscures the change. Individuals, researchers, and smaller organisations that lack the budget for enterprise-grade hardware are disproportionately affected by such silent downgrades.
AMD has yet to issue a public statement explaining the omission. Industry observers have speculated the reasons could range from silicon cost reduction and thermal management to a deliberate commercial strategy designed to push security-conscious buyers toward higher-margin enterprise products. Without official clarification, however, the absence of an explanation only deepens the trust deficit.
The episode underscores a broader challenge for hardware buyers: current specification sheets and marketing materials may not reliably reflect a processor's actual security capabilities, especially across generational changes. For privacy-conscious users and IT planners, independent verification through third-party testing or community-driven documentation has become essential before committing to hardware for sensitive workloads. Assumptions based on prior-generation features or ambiguous branding terms are no longer a safe basis for procurement decisions.
用戶與安全專家近日發現,AMD似乎已悄然從其最新消費級處理器中移除了一項關鍵的記憶體加密功能,此舉引發廣泛關注。批評者認為,這侵蝕了用戶信任,使得普通系統的基礎防護能力較前代產品更為薄弱。
爭議焦點在於「透明安全記憶體加密」技術,該技術能在數據存於記憶體期間自動進行加密。根據Ars Technica的詳細調查及社群測試結果證實,這項在早期消費級Ryzen世代已提供的功能,在未有任何官方公告、規格更新或公開說明的情況下,已從當前產品線(例如Ryzen 9000系列)中移除。
TSME旨在保護運行中記憶體內的敏感數據,防禦攻擊者可能直接從記憶體模組提取資訊的物理性攻擊。此安全層級與僅在機器關機時保護數據的全磁碟加密有根本不同。從消費級晶片移除此功能,實際上擴大了AMD桌面與手提電腦處理器,同其專業PRO與EPYC伺服器產品線(該功能仍完整保留)之間的安全差距。
受影響用戶的核心不滿不僅在於區分產品層級的決定,更在於AMD顯然缺乏坦誠。受影響的消費級處理器公開規格中,仍提及支援「AMD Memory Guard」這個涵蓋記憶體加密能力的廣泛市場推廣術語。批評者認為,這造成了與前代產品功能對等的誤導性印象——對於為注重私隱的工作負載或無法負擔企業級硬件的小型企業部署選購硬件的用戶而言,此區別至關重要。
在產品線之間區分性能或生產力功能是業界常見做法。然而,將同樣策略應用於基礎安全機制,則引發了倫理質疑,尤其是在市場推廣用語掩蓋了此項變更之時。缺乏預算採購企業級硬件的個人、研究人員及中小型組織,為此類靜默降級承受了不成比例的影響。
AMD迄今未就該遺漏發表公開聲明。業界觀察人士推測原因可能多樣,從降低晶片成本、熱管理考量,到刻意推動安全意識買家選擇高利潤企業產品的商業策略皆有可能。然而,在缺乏官方澄清的情況下,解釋的缺失只會加深信任赤字。
此事件突顯了硬件買家面臨的更廣泛挑戰:現行規格表與市場推廣資料未必能可靠反映處理器的實際安全能力,尤其在世代更迭之際。對於注重私隱的用戶及IT規劃者而言,在為敏感工作負載採購硬件前,透過第三方測試或社群驅動的文檔進行獨立驗證已變得至關重要。基於前代功能或模糊品牌術語的假設,已不再是採購決策的安全依據。