Rendered at 09:40:09 GMT+0000 (Coordinated Universal Time) with Cloudflare Workers.
ZiiS 1 hours ago [-]
If it can be silently removed was it a security feature?
Whilst I hate companies paying engineers to make things worse just to segment their market; I am not really seeing this as an important feature outside the data-center? If an evil-maid has hardware access they hack the USB and/or PCI not the RAM surely?
mike_hock 19 minutes ago [-]
Sneakily and silently removing a feature in a firmware revision is not acceptable, security or otherwise.
thg 34 minutes ago [-]
This was never marketed as a feature of the consumer CPUs and if some malignant actor does get physical access to my (consumer) hardware, then them being able to read out bytes through cryo-freezing the RAM really isn't high up on the list of things I'm going to worry about.
k__ 12 minutes ago [-]
I'm curious about Denuvo's opinion on that.
garganzol 39 minutes ago [-]
For what it's worth, RAM encryption belongs to professional SKUs. It's the right business decision that should have been made from from the very beginning.
For most consumer users, RAM encryption primarily adds power consumption and heat generation while providing little practical benefit. They simply don't face many of the threat vectors and attack scenarios that certain industries and enterprise environments must contend with.
baq 13 minutes ago [-]
how do you know what threats I face? how do you know what threats journalists and whistleblowers face?
this is approximately the same discussion as with ECC RAM: the benefits vastly outweigh the slight performance loss and die area increases.
bflesch 5 minutes ago [-]
Weird, maybe you should start posting about the Epstein stuff and you'll quickly learn about your threat situation.
rubyn00bie 29 minutes ago [-]
This is an absurd take since the referenced chips in the article are all desktop parts, and the power usage is dwarfed by any “modern” (within the last five years) GPU.
There are many people, myself included who opt to use security features like this. All this does is reduce security for folks without any legitimate reason. “Power consumption” is absolutely not a valid excuse to completely disable it.
I’ve been a fan of AMD for a while now but they’re really jumping the shark these days. It’s a real shit situation we’re all in because of the lack of competition in consumer CPUs. I can only hope things like RISCV take off sooner than later.
Elfener 31 minutes ago [-]
I would be fine with this if it meant CPUs became slightly cheaper, but we know that's not going to happen.
And there's been talk that now the so-called "AI companies" will start using more CPUs as well, due to "personal agentic agents", so I hope that people won't be priced out of CPUs too...
bflesch 4 minutes ago [-]
It's a shame there is no software-based memory encryption included in the linux kernel. Especially cloud providers can easily snoop all your keys and you have zero recourse.
benjojo12 51 seconds ago [-]
In a cloud provider situation there is no pure software solution to this, the hypervisor can always dump your memory pages / register states
lompad 2 hours ago [-]
Any idea what's happening? This sounds _bad_.
voxadam 46 minutes ago [-]
Market segmentation.
ykonstant 1 hours ago [-]
I would also like to know. Surely some people here have at least second-hand knowledge, and silence can sometimes be deafening.
themafia 1 hours ago [-]
> To be fair to AMD, there is no clear indication that the company ever publicly advertised TSME as a consumer Ryzen feature.
A feature that was possibly accidentally enabled on consumer chips is now being disabled. I would guess that the number of owners of consumer chips who also relied on them for encryption is exceedingly small.
The primary concern persists. The manufacturer has an exceptional amount of control of the state of your CPU most of which you cannot change and an unknown chunk of which you cannot even see. We are sort of playing in a fools paradise.
willis936 51 minutes ago [-]
How can manufacturers simultaneously have exceptional control over flags and not enough control to know what flags are enabled on their shipping products?
They either have that control or they don't.
lmz 46 minutes ago [-]
They always had control. Awareness is a different thing. You could just as well ask "if you've written every line of code, why did you write that bug?".
nikanj 3 minutes ago [-]
You choose every piece of food you eat, how do you not know all the macros?
20 minutes ago [-]
Ygg2 32 minutes ago [-]
To be fair same can't be said of ECC, even though ECC should be basic feature out of the box.
rekttrader 47 minutes ago [-]
Hint: NSA said no.
shiiiit 23 minutes ago [-]
This will be re-added in a few years. The current flip-flop is just enshittification.
miga 36 minutes ago [-]
It is sad that once again we will be exposed to more criminals trying to steal our data. Memory encryption not only allows to secure memory from physical "cold RAM", but also prevents loss of encryption keys as it hides the content during transfer.
Whilst I hate companies paying engineers to make things worse just to segment their market; I am not really seeing this as an important feature outside the data-center? If an evil-maid has hardware access they hack the USB and/or PCI not the RAM surely?
For most consumer users, RAM encryption primarily adds power consumption and heat generation while providing little practical benefit. They simply don't face many of the threat vectors and attack scenarios that certain industries and enterprise environments must contend with.
this is approximately the same discussion as with ECC RAM: the benefits vastly outweigh the slight performance loss and die area increases.
There are many people, myself included who opt to use security features like this. All this does is reduce security for folks without any legitimate reason. “Power consumption” is absolutely not a valid excuse to completely disable it.
I’ve been a fan of AMD for a while now but they’re really jumping the shark these days. It’s a real shit situation we’re all in because of the lack of competition in consumer CPUs. I can only hope things like RISCV take off sooner than later.
And there's been talk that now the so-called "AI companies" will start using more CPUs as well, due to "personal agentic agents", so I hope that people won't be priced out of CPUs too...
A feature that was possibly accidentally enabled on consumer chips is now being disabled. I would guess that the number of owners of consumer chips who also relied on them for encryption is exceedingly small.
The primary concern persists. The manufacturer has an exceptional amount of control of the state of your CPU most of which you cannot change and an unknown chunk of which you cannot even see. We are sort of playing in a fools paradise.
They either have that control or they don't.