With Meltdown and Spectre what happens to pending server purchases and how will companies address the performance issues of patches?
Spectre is hitting servers especially hard. The software updates to protect the servers are causing performance issues. In other words, when a patch is applied to address the vulnerability, performance decreases perhaps 30 percent.
To reiterate, Spectre does not affect systems that are based on an AMD or ARM processor. Many home systems use these processors. However, they do affect Intel processors which have a huge share of the server market. Servers are where lots of sensitive information is stored. They are also the machines that run government, business and commerce.
My guess is that will eat up any excess capacity of the patched servers. The system administrators will be faced with choices.
- Accept performance issues as the servers bog down.
- Add more servers. In some cases that will mean re-engineering the systems if there is not enough availability. Also, purchasing servers now will mean that they are purchasing servers with the flaw.
- A CPU can be replaced. I don’t know if an Intel based server can accept a non Intel CPU or not. If it can, then this opens up a huge market for AMD/ARM.
- If it is not possible to switch CPU brands, then perhaps Intel will release replacement chips. This raises some issues
- Who will bear the cost, the user or Intel?
- How will this affect production of new systems? If chips are being produced as replacements for existing servers, then there will be a shortage of chips for new systems. I would assume that chip production cannot be easily ramped up.
- I’m not sure if Intel is “Too big to fail” but this could be the next huge government bailout. I would really be annoyed to see my tax dollars pay for what was a deliberate decision by a company (i.e. foregoing security checks on the cache)
- As systems bog down, users will feel the results. Currently when I swipe a card at a POS, the card is approved in less than 5 seconds. With performance impacts on patched systems I would expect that time to lengthen.
- Meltdown and Spectre – You might NOT have to replace all of your hardware.
- Meltdown and Spectre – Intel CEO reportedly sold over three quarter of a million shares AFTER learning of the vulnerabilities.
- KB4056892, the Windows 10 patch to address Meltdown/Spectre installed on my laptop – Performance results are…
- Cert links to guidance from manufacturers affected by Meltdown and Spectre
- A Windows 10 patch that is supposed to address Meltdown and Spectre vulnerabilities. BEWARE IF YOU HAVE AN AMD PROCESSOR
- Meltdown and Spectre are going after your private information.
- Microsoft releases patches to address vulnerabilities in IE, Office and Windows/Win Server
- Securing a small office network.