Slashdot Mirror

← Back to Stories (view on slashdot.org)

AMD Launches Ryzen PRO CPUs: Enhanced Security, Longer Warranty, Better Quality (anandtech.com)

Posted by msmash on from the competition-heats-up dept.

Reader harrisonweber shares a report: This morning AMD introduced their Ryzen PRO processors for business and commercial desktop PCs. The new lineup of CPUs includes the Ryzen 3 PRO, Ryzen 5 PRO and Ryzen 7 PRO families with four, six, or eight cores running at various frequencies. A superset to the standard Ryzen chips, the PRO chips have the same feature set as other Ryzen devices, but also offer enhanced security, 24 months availability, a longer warranty and promise to feature better chip quality. The AMD Ryzen PRO lineup of processors consists of six SKUs that belong to the Ryzen 7, Ryzen 5 and Ryzen 3 families targeting different market segments and offering different levels of performance. As one would expect, the Ryzen 7 PRO models are aimed at workstation applications and thus have all eight cores with simultaneous multithreading enabled, the Ryzen 5 PROmodels are designed for advanced mainstream desktops and therefore have four or six cores with SMT, whereas the Ryzen 3 PRO models are aimed at office workloads that work well on quad-core CPUs without SMT. The specifications of the Ryzen 7 PRO and the Ryzen 5 PRO resemble those of regular Ryzen processors. Meanwhile, the Ryzen 3 PRO are the first chips from the Ryzen 3 lineup and thus give us a general idea what to expect from such products: four cores without SMT operating at 3.1-3.5 GHz base frequency along with 2+8 MB of cache.

50 comments

  1. "Enhanced Security" by Anonymous Coward · · Score: 1

    The phrase "Enhanced Security" almost never means what it says.

    1. Re: "Enhanced Security" by Anonymous Coward · · Score: 0

      Seriously. I'm all ears to hear how they kept the features compatible with the rest of the chip family, but enhanced the security at the processor level?

    2. Re:"Enhanced Security" by BradleyUffner · · Score: 1

      It gets really hot, so it is harder to steal without burning yourself.

    3. Re:"Enhanced Security" by randomErr · · Score: 1

      I read through. Its a handful of options such some processor space specific for biometrics recognition so the software isn't involved. Also there it chunck out the memory into slices. If a check bit is not set right on the slice its assumes something wrote directly to memory and throws and error to the OS.

      I agree, hardware security is only as good as the software that is using it. It also takes away processing power from my core operations: Emulating the NES version of the Legend of Zelda at 240 frames/second.

      --
      You say things that offend me and I can deal with it. Can you?
    4. Re: "Enhanced Security" by Anonymous Coward · · Score: 3, Funny

      They fixed a few silicon errors in the spying functionality of the original chips that a microcode couldn't fix. So now that TLA can effectively spy on you, the processors offer advanced (national/homeland) security.

    5. Re:"Enhanced Security" by Anonymous Coward · · Score: 0

      That's the i9.

    6. Re:"Enhanced Security" by klingens · · Score: 4, Interesting

      This time it does: it encrypts the main memory. So in the DRAM only encrypted data is stored. It gets decrypted on the fly, transparently when loaded into the CPU, so there is no special support needed by the OS or any software. This does increase latency of course.

      This encryption can also be used to encrypt VMs running on the CPU, where every VM has a different randomly created AES key, isolating VMs from each other.

    7. Re:"Enhanced Security" by Anonymous Coward · · Score: 0

      i'm sure it's all the same silicon, just a different package enabling additional features (with a compatible firmware on the motherboard) which remain dormant on the 'consumer' chips.

    8. Re:"Enhanced Security" by Anonymous Coward · · Score: 0

      Does that mean there's a BMW 9 series in the making?

    9. Re:"Enhanced Security" by Anonymous Coward · · Score: 1, Interesting

      But what is the point of this encryption when the keys are still in disk and in memory somewhere, or how does the server boot up without admin? Does it go to eleven?

    10. Re: "Enhanced Security" by thegreatbob · · Score: 2

      RTFA, looks like integrated TPM device and memory encryption (including extensions for VM hypervisors). Nothing that would remove/alter features that existed in the other line, and nothing that would nominally affect the operation of software that did not explicitly attempt to use it. Conceivable that the stuff was already in the silicon but skipped out on for one reason or another (e.g. binning).

      --
      There is no XUL, only WebExtensions...
    11. Re:"Enhanced Security" by thegreatbob · · Score: 1

      I'm going to suggest that the enablement of memory encryption does fit the bill.

      --
      There is no XUL, only WebExtensions...
    12. Re:"Enhanced Security" by Anonymous Coward · · Score: 0

      The keys would be in-CPU somewhere. With randomly generated keys you can at least block VMs from snooping at each other, and perhaps the freon attack. WIth the TPM thing on-chip you can store the keys to on-disk images there. And you can do remote attestation and such, taking control entirely away from the operator, even the owner, and give it to benevolent corporations selling "best version ever" desktop emulation software or wonderfully original movies, or somesuch. And the PSP's still there, too.

      So all that "pro security" will probably be very hard to crack, but it doesn't have to be to your benefit that it's there.

    13. Re:"Enhanced Security" by FeelGood314 · · Score: 1

      If I access RAM in a different way than the way or from a process other than the one that is supposed to have that memory location I will use the wrong key or counter mode counter and as a result get garbage. I also can't write anything meaningful there for the other process to read.

  2. Comparison by DigiShaman · · Score: 3, Interesting

    Ryzen 7 = Core i7
    Ryzen 5 = Core i5
    Ryzen 3 = Core i3

    Ryzen Pro is Xeon equivalent?

    --
    Life is not for the lazy.
    1. Re:Comparison by Anonymous Coward · · Score: 2, Informative

      No - Epyc is the Xeon competitor.

    2. Re:Comparison by Anonymous Coward · · Score: 0

      Epyc is the Xeon E5 competitor.
      Ryzen Pro == desktop chip with a few extra features enabled. What's Xeon E3 again? ;)

    3. Re:Comparison by Anonymous Coward · · Score: 0

      There have been some "Business" versions of AMD CPU years before, with a "B" appended to the model number.

      It was/is more or less empty branding for OEM desktops, although perhaps the branding means the CPU has to be pair with a TPM module on the motherboard, for instance. Whereas a consumer desktop might have an empty socket for TPM module on the motherboard.

      The DRAM encryption feature (TSME), if reserved for the "Pro", would be the first and only differentiating feature. Although perhaps this TSME will work on any and every Ryzen CPU, if motherboard's firmware supports it. In that case a "Pro" branded Ryzen means you get a motherboard and firmware guaranteed to be compatible with all little features (including TPM/Secureboot, management, perhaps ECC which might be supported on most but not all consumer motherboards).
      Laptops, and in particular consumer OEM desktops might skimp on features. If you've been a nerd enough to swear at an OEM desktop because they lack BIOS options and a reset button you might have a feel about that. Retail consumer motherboards might eventually support everything even with a non Pro Ryzen CPU?
      In that latter scenario, do your homework (read motherboard manuals, firmware update changelog...) or look only for what you care about e.g. ECC.

      tl;dr It's the equivalent of Xeon E3 to be precise (except starting from Skylake, Intel segregated Xeon E3 from Core i3/i5/i7 so that they don't run in regular motherboards with consumer chipset anymore)

    4. Re:Comparison by randomErr · · Score: 2

      Its not exactly an apples to apples comparison but I found this:

      http://cpu.userbenchmark.com/Compare/Intel-Core-i7-6850K-vs-AMD-Ryzen-7-1800X/3606vs3916

      --
      You say things that offend me and I can deal with it. Can you?
    5. Re:Comparison by AmiMoJo · · Score: 2

      Epyc is the Xeon equivalent. The main differences between those and desktop CPUs are number of PCIe lanes and advanced CPU features.

      These are something new... And then there is Threadripper too. These are like a cheap Xeon but for desktop motherboards, so you get some server/workstation features like the memory encryption but with cheap mobos and fewer PCIe lanes.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    6. Re:Comparison by dbIII · · Score: 1

      Ryzen Pro is Xeon equivalent

      No.
      Their new CPUs for multi-socket boards are called "Epyc" (https://en.wikipedia.org/wiki/Epyc)
      It will be nice to get 128 threads on a two socket board.

    7. Re:Comparison by Highdude702 · · Score: 1

      Or 128 on a single socket chip.. I mean, 32 cores 64 threads.. should be plenty for 128 lanes.

    8. Re:Comparison by Anonymous Coward · · Score: 0

      No.

      Yes.

      Their new CPUs for multi-socket boards are called "Epyc" (https://en.wikipedia.org/wiki/Epyc)

      E3 Xeons aren't multi-socket. They're the exact same silicon as desktop i5/i7.

    9. Re:Comparison by Anonymous Coward · · Score: 0

      Probably some where between core i(5,7) w/ vPro (dual channel RAM, enterprise availability/management features, etc) and Xeon E3 (in that they support ECC RAM)

  3. Warranty? by ArchieBunker · · Score: 1

    I see dead CPUs for sale on eBay but have never heard from anyone that had an actual CPU stop working.

    --
    Only the State obtains its revenue by coercion. - Murray Rothbard
    1. Re:Warranty? by Anonymous Coward · · Score: 0

      Overclockers damage their CPUs or the motherboard often. And a damaged motherboard can and will eventually damage any CPU you place on it.

    2. Re:Warranty? by Highdude702 · · Score: 1

      I have tortured AMD CPU's over the years, and have never had one stop working. I have gotten bad out of box from frys, but I suspect they were returned after being fried. as i have had to remove TIM from them before insertion. I have also dropped and broken pins off of an FX-8350.. One memory channel bit the dust. But to this day its still working, my wife uses it to play TF2 with me. Hell i have overvolted them and it just caused them to run hot and throttle. I do not work with an ESD Wrist guard, And i work over carpet a lot. Only had one motherboard even fry on me, pretty sure it was ESD, got a bit dirty vacuumed it out with a bristle attachment.. Did the same thing on my ASUS ROG motherboard with no harm.. So from my experience I would say these devices are rather robust. although it seems like you get what you pay for.

  4. 8 "cores" by Lumpy · · Score: 0

    Are they still pulling their Marketing on the cores are did they finally add in the other half FPU's so all 8 processors have 8 FPU's? or is it more AMD marketing trying to convince you that nobody really needs all the parts on the die for all cores...

    --
    Do not look at laser with remaining good eye.
    1. Re:8 "cores" by rahvin112 · · Score: 1

      No. RTFM

    2. Re:8 "cores" by samwichse · · Score: 1

      Hi, you're talking about an entirely different processor architecture (Bulldozer).

      Zen (the basis for Ryzen and Epyc) is a clean sheet design.

    3. Re:8 "cores" by steveha · · Score: 2

      AMD took forever to get Ryzen out, but they really did do a good job with the chips. No games, no tricks, and 50% more instructions per clock. And to specifically answer your question: yes, each core has its own FPU.

      http://www.pcworld.com/article/3176907/components-processors/ryzen-cpus-explained-everything-you-need-to-know-about-amds-disruptive-multicore-chips.html

      The most interesting thing about the new Ryzen PRO chips: much more PCI-E lanes. From an article a month ago: "...AMD committed offering all 64 PCI-E lanes and 4 DDR4 memory channels on every ThreadRipper SKU regardless of price, clockspeed, or core count. These [Intel] Core X-series chips haven't even been publicly announced for a full 24 hours and already it's clear that AMD's offering the better chip."

      http://semiaccurate.com/2017/05/31/amds-ryzen-threadripper-brings-socket-tr4-x399-chipset/

      --
      lf(1): it's like ls(1) but sorts filenames by extension, tersely
    4. Re:8 "cores" by Anonymous Coward · · Score: 0

      ryzen pro is different than threadripper.

    5. Re:8 "cores" by AmiMoJo · · Score: 1

      Full cores, very competitive with Intel parts, and half the price.

      Memory encryption is a killer feature.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    6. Re:8 "cores" by steveha · · Score: 1

      ryzen pro is different than threadripper.

      Whoops, sorry for the mistake. I thought Threadripper was just a code name and Ryzen Pro was the release name. But it was a dumb mistake... the table shows "Ryzen 3 Pro" with only 4 cores and no Threadripper will have that few.

      Mea culpa.

      --
      lf(1): it's like ls(1) but sorts filenames by extension, tersely
    7. Re: 8 "cores" by Anonymous Coward · · Score: 1

      > No games, no tricks

      wat? They still have their equivalent of Intel's IME. Until they gut that shit, I'm not buying new hardware with my own money.

    8. Re: 8 "cores" by steveha · · Score: 1

      They still have their equivalent of Intel's IME. Until they gut that ****, I'm not buying new hardware with my own money.

      According to SemiAccurate, the AMD security stuff is way better than the Intel stuff.

      Why is it better than Intel?

      ...SemiAccurate questioned AMD about the details surrounding SME, SVE, and the PSP. On the PSP front we were similarly impressed with the answers we got. First and foremost is the simple fact that the PSP firmware must be correctly signed to run. Having the hardware that controls the root of all your platform security running only signed code seems like an obvious, basic, bare minimum requirement for any security related technology. It also seems like something even a 3rd grader would flag as mandatory, but how can we say this politely, INTEL DOES NOT DO THIS. No joke.

      http://semiaccurate.com/2017/06/22/amds-epyc-major-advance-security/

      Still, if you want hardware that absolutely doesn't have a tricky security system, you should be trying to help the EOMA68 project succeed. I backed their Kickstarter and one of these days I will receive a little mini desktop, running Linux on an ARM core. It's the one made from stacked wood.

      https://www.crowdsupply.com/eoma68/micro-desktop

      --
      lf(1): it's like ls(1) but sorts filenames by extension, tersely
    9. Re:8 "cores" by Anonymous Coward · · Score: 1

      How could you not have heard? Ryzen is good enough that Intel is having a panic attack of sorts. AMD closed the IPC gap significantly, though Ryzen starts at a lower clock speed than the iX series and there's latency in cross CCX communication, but has increased core counts across the board. (Basically, it slightly underperforms in gaming-type tasks, performs well in multi-core tasks.)

      From what I understand, the normal desktop Ryzen didn't worry Intel so much, but when AMD announced Threadripper (16-cores), Intel responded with the i9 series. It seems to be a rush-job though with people complaining about what features are available.

      Then there's the price. An 8- or 6-core Ryzen CPU/mobo combo is about half the same price for the same core-count. Intel is keeping their prices static (their 16-core is expected to cost $1699, whereas the 16-core Threadripper is expected at under $900).

      AMD is actually providing good value for the money and anyone not dependent on Intel's strengths will probably go AMD.

    10. Re:8 "cores" by Billly+Gates · · Score: 2

      Ask and you shall receive?
      https://m.youtube.com/watch?v=...

      AMD is back with a new architecture from scratch after the terrible piledriver architecture.

      It's equivalent to an 8 core 16 threaded i7 4790k if one ever existed in gaming and beats the i7 7700k in productivity tasks and matches $2000 i7 6900 series CPUs in both gaming and productivity.

      AMD rehired it's Alpha and AthlonXP CPU designer for Ryzen with it's new design from scratch. Downside are bugs and errata as it's brand new

      --
      http://saveie6.com/
  5. Still waiting for APUs. by Anonymous Coward · · Score: 0

    I'm still hoping AMD releases something to compete with the G4560. Maybe a tri-core processor?

    I'm curious if they'll release a Threadripper equivalent for laptops. There's a market for higher core count laptops and AMD seems to have the willingness to do it.

    Hell, ASUS is already releasing the mammoth Strix GL702ZC which includes a desktop Ryzen 1700 and a full-sized GPU. But that's 3.7 inches thick and I think consumers would want something a bit slimmer.

    1. Re:Still waiting for APUs. by Highdude702 · · Score: 1

      Fuck that, 3.7" Thick.. Sounds like instead of someone robbing you for your laptop, you could beat the brakes out of them with the thing.. Just saying.

  6. Disappointing! by Anonymous Coward · · Score: 0

    This could have been the release announcement stating that AMD was going to make its 'PRO' chips for professionals... meaning the PSP was unlocked/allowed sideloading of authentication keys so professional users could ensure the code running in their PSP core was code that THEY trusted, not what the factory/NSA told them to trust.

    Instead we get a bunch of 'false security' theater: 'Trust us, these keys for this 'transparent encrypted ram' won't be accessable by anyone else, just like they aren't accessable by you! C'mon, get real, the whole reason for these features is to give people a false sense of security when in actuality all of these 'features' can be compromised easily by the manufacturer or a nation-state actor in order to decrypt the contents of memory and provide them unfettered access, while at the same time obfuscating the operation of software on the system from the system's owners, and from security researchers who might otherwise blow the whistle on the misdeeds taking place in the backend of the processors.

    Unless something changes soon we're skipping right past the 'cypherpunk' chapter of the Information age, and going right into the 1984-esque dystopian nightmare, where every electronic device around you is another of big brother's eyes, or ears, or anuses, just waiting to see, hear, or shit all over you.

    But not enough people care and soon enough the choice to rebel will be removed from both the mind and capabilities of the commoners to change. Fates will be sealed from now until and unless something even more game changing comes along.

  7. No,... by Anna+Merikin · · Score: 1

    It's an old BMW. Ryzen7 = 7-series Ryzen5 = 5-series Ryzen3 = 3-series

  8. Better Quality by Anonymous Coward · · Score: 0

    ??

  9. "Enhanced Security": SGX vs SEV. by Anonymous Coward · · Score: 0

    I imagine SEV is just AMD's version of Intel's SGX.

  10. Ryzen not Windows 10 certified? by Billly+Gates · · Score: 1

    Secure boot and TPM is pretty standard nowdays and this means Ryzens can't be sold with Windows OEM as the license agreement dictates secure boot and TPM keys.

    ROOTkit detection is pretty essential today. So this means only Ryzen Pros offer what Intel has had for years

    --
    http://saveie6.com/
    1. Re:Ryzen not Windows 10 certified? by Highdude702 · · Score: 1

      Yay! The guy that knows absolutely nothing about computers or networking or well anything much technical is going to put his two cents in.. Why do you even comment on these threads. I have proven time and time again that you have NFI what you're talking about. How about you go research TPM and Secure boot. And tell me why Windows OEM wont work on the new Ryzen architecture. And then go fuck off to whatever you normally do when you're not spewing nonsense here.

  11. Superset? by Hypoon · · Score: 1

    That's not what "superset" means... it means quite the opposite, in fact. If Ryzen PRO chips are a superset of Ryzen chips, then all Ryzen chips are Ryzen PRO chips, but not all Ryzen PRO are necessarily Ryzen chips. The intended meaning is the other way around, isn't it? All Ryzen PRO chips are Ryzen chips, but not all Ryzen chips are Ryzen PRO chips, therefore Ryzen chips are a superset of Ryzen PRO chips, or Ryzen PRO chips are a subset of Ryzen chips.

    Alternatively, one could say that the *features* of Ryzen PRO chips are a superset of the *features* of Ryzen chips.

    A smaller set cannot be a superset of a larger set.

    On a different note, I have a very simple question: is there evidence that these kinds of hardware security features actually do thwart attacks in the real world? Just curious.

  12. Wait what? by Ryanrule · · Score: 1

    Warranty? Quality?

  13. chipset drivers for windows 7 by 0111+1110 · · Score: 1

    Can it run Windows 7 or just Linux, OSX, and Microsoft malware?

    --
    Quite an experience to live in fear, isn't it? That's what it is to be a slave.