{
"title": "ASUS Delivers Beta BIOS Restoring Transparent Secure Memory Encryption to Ryzen 9000 AM5 Motherboards",
"content": "ASUS caught the attention of the AMD enthusiast community on June 25, 2026, by releasing a sweeping set of beta BIOS updates that restore Transparent Secure Memory Encryption (TSME) support to non-PRO Ryzen 9000 processors. The updates, built on AMD’s latest AGESA 1.3.0.1b Patch A, cover a wide array of AM5 motherboards and mark a significant security win for consumers who were blindsided by the feature’s removal from this generation.
For months, owners of Ryzen 5 9600X, Ryzen 7 9800X3D, Ryzen 9 9950X, and other non-PRO models watched as the TSME toggle remained stubbornly absent from BIOS menus. The exclusion was intentional: AMD had reserved TSME for its PRO SKUs, which target commercial desktops and usually come with a price premium. ASUS’s move effectively sidesteps that restriction, giving enthusiasts a reason to cheer and perhaps hinting at broader changes to come.
What is TSME and Why Does Your AMD System Need It?
Transparent Secure Memory Encryption is a hardware-based security feature built into AMD’s memory controller. It employs an AES-128 encryption engine that scrambles all data written to DRAM without any involvement from the CPU or operating system. At boot time, the AMD Platform Security Processor (PSP) generates a random key that is stored in hardware and never exposed, making it immune to software-based extraction attacks.
The practical benefit is protection against physical attack vectors. If an attacker removes a memory module from a running system or uses a DMA attack tool while the machine is locked, TSME ensures the data they capture is unreadable ciphertext. This kind of security is critical for laptops and corporate desktops, but it’s equally relevant for home users who keep sensitive information on their PCs, especially given the rise of remote work.
On Windows 11, TSME works in concert with Hypervisor-Enforced Code Integrity (HVCI) and Virtualization-Based Security (VBS). While those features isolate sensitive processes and validate code execution, TSME closes the physical memory loophole. It’s a foundational technology that AMD has long championed in its commercial lineups, but its removal from consumer Ryzen 9000 created an unnecessary vulnerability.
Intel’s equivalent, Total Memory Encryption (TME), is available on vPro and some standard platforms, but AMD’s implementation has often been praised for its low overhead. In fact, benchmarks from previous generations showed that turning on TSME results in a mere 1% to 2% hit on memory-intensive tasks, making it a “set and forget” security measure.
The Long Road to AGESA 1.3.0.1b Patch A
When AMD introduced the AM5 socket alongside Ryzen 7000 series, TSME was available across the entire stack, including non-PRO models. Users could enable it with any X670 or B650 motherboard, and it worked seamlessly. However, with the arrival of Ryzen 9000, AMD silently gated the feature. Motherboard manufacturer ASRock even listed TSME in its BIOS notes only to later remove it, signaling that AMD had imposed a PRO-only lockdown.
The enthusiast community reacted with frustration. Reddit threads and tech forums were flooded with inquiries, and many users wondered if AMD had fused off the feature in silicon. The consensus became that it was a pure firmware segmentation tactic—a way to push businesses toward more expensive PRO SKUs without adding meaningful hardware differentiation.
Then, suddenly, AGESA 1.3.0.1b Patch A surfaced. This updated microcode layer from AMD removes the firmware lock, allowing motherboard makers to expose TSME once again. ASUS was the first to act, releasing a beta BIOS across its entire AM5 line. The update covers not only flagship X670E boards but also mid-range B650 models and even budget A620 options, judging by user reports. The broad deployment suggests that ASUS intends to bring TSME back to every AM5 customer, regardless of chipset tier.