AMD Releases Chipset Driver with CET Security for Ryzen CPUs: A Comprehensive Overview

In a significant advancement for PC users, particularly those invested in AMD Ryzen CPUs and security, AMD has released a new chipset driver that introduces support for Control-flow Enforcement Technology (CET). This update applies to a broad range of Ryzen processors, including the 9000, 8000, 7000, 5000, and 3000 series. The driver, version 6.10.17.152, is designed to bolster system security on Windows 10 and Windows 11 platforms.

What is Control-flow Enforcement Technology (CET)?

CET is a hardware-based security feature developed by Microsoft to mitigate sophisticated attack techniques such as Return Oriented Programming (ROP) and Call or Jump Oriented Programming (COP/JOP). These attack vectors attempt to hijack legitimate software control flows to execute malicious code.

Key components of CET include:

  • Shadow Stack: This maintains a secure, secondary stack to verify the integrity of return addresses during function calls. This protects the system from ROP attacks by ensuring that the return address on the normal stack matches the secure shadow stack.
  • Indirect Branch Tracking (IBT): Helps block indirect branch attacks by verifying indirect branch targets.

Together, these mechanisms enhance the overall system resilience against code-reuse attacks, effectively guarding the control flow of programs at the hardware level.

Background and Context

AMD’s decision to integrate CET support at the chipset driver level underscores an industry-wide shift toward embedding robust hardware-based security features in mainstream processors. As cyber threats grow more sophisticated, hardware vendors and operating system developers have increasingly collaborated to implement foundational defenses directly within CPUs.

Prior to this release, CET support primarily resided in Intel's hardware ecosystem, especially for its newest CPUs. AMD catching up with CET compatibility reflects its commitment to providing competitive security features alongside high performance.

Technical Details of the Driver Update

The AMD chipset driver version 6.10.17.152 introduces CET compatibility for several Ryzen processor families:

  • Ryzen 9000 series
  • Ryzen 8000 series
  • Ryzen 7000 series
  • Ryzen 5000 series
  • Ryzen 3000 series

Driver Components Updated for CET Compatibility

  • AMD I2C Driver (Version 1.2.0.126)
  • AMD UART Driver (Version 1.2.0.119)
  • AMD GPIO2 Driver (Version 2.2.0.134)

These components now explicitly include "CETCOMPAT" support, which means they are compatible with CET features related to secure control-flow enforcement.

Additional Driver Components

  • AMD Ryzen Power Plan
  • AMD 3D V-Cache Performance Optimizer Driver

For these drivers, no changes were made in this update regarding CET.

Bug Fixes and New Device IDs

Alongside CET support, the driver rollout addresses several bugs that enhance device stability. However, some known issues persist, including a failed uninstallation bug and problems related to provisioning package (PPKG) installation processes which AMD has yet to resolve.

Implications and Impact

For Users

This update significantly beefs up the security for Ryzen users running Windows 10 and Windows 11, helping to protect against complex, low-level attacks that could lead to system compromises. Enabling CET is particularly important for business environments, developers, and security-conscious users who prioritize system integrity.

For OEMs and System Builders

Support for CET across multiple Ryzen series broadens OEMs’ opportunities to produce secure systems without waiting for next-generation CPUs. This can facilitate smoother transitions to safer PC builds with hardware-level defense mechanisms.

AMD’s move toward CET compatibility fits within a growing trend where hardware makers and software developers are deepening integration on security. This driver update reflects a maturation of the PC security ecosystem, with hardware features becoming standard lines of defense against modern attack methodologies.

Compatibility Notes

  • Windows 10 and Windows 11 systems running supported Ryzen CPUs can benefit from this chipset driver.
  • Users of Ryzen 7000 Mendocino mobile CPUs should note specific Windows 10 compatibility limitations, as AMD marks these as Windows 11-only supported processors.
  • Users are encouraged to update to the latest operating systems and drivers to maintain compatibility and security.

Conclusion

AMD’s release of a chipset driver introducing CET support across multiple Ryzen processor lines marks a pivotal step in reinforcing platform security against sophisticated exploits. By embracing this hardware-enforced defensive strategy, AMD equips users with enhanced protection while maintaining the high performance expected from Ryzen CPUs.

This update not only strengthens individual system security but also signals AMD’s alignment with evolving industry standards focused on hardware-backed security resilience in the era of rising cyber threats.