AMD Ryzen security TSME memory encryption BIOS hardware
AMD Folding to Security Critics: TSME Memory Encryption Returns to Ryzen 9000 in July
AMD has told Tom's Hardware that it will reinstate Transparent Secure Memory Encryption (TSME) on desktop Ryzen 9000 processors in July. AMD tells Tom's Hardware that it's bringing TSME back to non-PRO Ryzen 9000 chips "based on valuable community feedback."
The reversal is blunt proof that a hardware security feature—even a niche one—can force a vendor to change course when the community pushes back hard enough. AMD had removed the feature quietly, and security advocates made that decision costly.
What AMD silently removed
TSME is a firmware-level encryption feature for memory. It allows the processor to generate a key in order to encrypt data stored in RAM, serving as a layer of protection against cold boot attacks, where a sudden shutdown can allow a physical attacker to extract sensitive data stored in memory.
TSME support on consumer CPUs dates back several years. It was not a new feature. It was a feature that had been there, and then AMD removed it.
The removal happened in firmware, not silicon. Earlier this year, AMD quietly removed the feature through a firmware update. The Ryzen 9000 CPUs still had the hardware. The firmware just refused to let users turn it on.
The discovery and the blowback
The removal was discovered after security audits on new machines with the Ryzen 9000 series. After discovering that TSME was no longer supported, researchers worked with motherboard vendors to confirm that TSME had previously been supported but was disabled in recent firmware.
What followed was not a quiet bug fix. It was a public accountability moment. Following the discovery, bug reports were raised on AMD's GitHub repository, and AMD eventually responded with minimal information about the change.
No explanation. No timeline. Just silence, while security-minded users realized a layer of protection had vanished from their machines without notice.
Without any comment from AMD, it appeared as though the company disabled TSME through firmware on its consumer parts in order to differentiate its PRO lineup. That theory hardened into consensus. Enthusiasts and security researchers saw clear intentionality—strip a security feature from consumer chips, reserve it for the expensive PRO tier, let firmware do the gatekeeping.
The community pushed back. Asus has started rolling out beta BIOS updates that restore Transparent Secure Memory Encryption (TSME) support to several AM5 motherboards, making it one of the first board vendors to implement AMD's promised fix after the company was criticized for quietly removing the feature from non-Pro Ryzen CPUs. Motherboard makers began shipping workarounds before AMD even said it would fix the problem.
What makes this rare
AMD's July timeline is a reversal. The company explicitly disabled a security feature to segment product tiers, users noticed and complained, and AMD undid it. That sequence is uncommon. Hardware vendors do not usually walk back firmware-level restrictions on security.
AMD has not committed to any policy preventing future undisclosed security feature changes on consumer chips. The company's statement commits to restoring TSME and confirms Memory Guard will remain on Ryzen PRO, but it does not establish a disclosure standard for future firmware changes affecting security behavior. The reversal is narrow. AMD did not promise transparency. It simply said yes to this one feature, this one time.
Still, it matters. The fact that community pressure—security researchers, enthusiasts, motherboard vendors working in parallel—could move a CPU maker is itself the signal. TSME isn't a critical security feature for most consumer desktops, as it protects against attacks where the attacker needs physical access to the device. It's niche. And yet it was enough to force a reversal.
That suggests the bar for pushing back on firmware security decisions has gotten lower. Or that AMD's corporate appetite for this particular fight was lower than expected.
Our take. Rare for a hardware vendor to restore a feature they deliberately removed, especially on grounds of "community feedback" alone. AMD betting on silence working and losing that bet is a useful data point—security-aware users now know they have leverage when firmware behavior changes without disclosure.
What to watch. Whether AMD establishes a public changelog for future firmware changes affecting security behavior, and whether other AM5 board makers ship final BIOS with TSME by the promised timeline. The speed and completeness of the rollout will say whether this was genuine reversal or managed retreat.
Bottom line. When firmware becomes a product lever, security features can vanish quietly—but community push-back can force them back just as quickly.