Google provides details on how it protected services like Gmail from Spectre

In a statement, the company suggested: "We have received reports from a few customers of higher system reboots after applying firmware updates". It's worth noting that only select devices with AMD chips are getting this months' security update for now, and the update will not cause boot issues.

All eyes were on Krzanich at CES 2018 as he gave the show's opening keynote, just days after experts in Google found the flaw in the chips made by Intel.

Now that the patches across various platforms for the recently discovered Spectre and Meltdown vulnerabilities have largely been deployed, Google has detailed how it managed to address these threats on its cloud services such as Gmail and Search before the public even knew about them. Specifically, these systems are running Intel Broadwell and Haswell CPUs for both client and data center.

Following announcements of the Google Project Zero security exploits last week, Intel has continued to work closely with our partners with the shared goal of restoring confidence in the security of our customers' data as quickly as possible.

"We believe that Retpoline-based protection is the best-performing solution for Variant 2 on current hardware", reads another excerpt.

"This can end up being a potential issue in data centres and enterprise customers can take a pause in buying the servers", he said.

Meltdown, Google explains, "breaks the most fundamental isolation between user applications and the operating system".

Infrastructure automation will help, but these vulnerabilities arose from CPU technology that drastically improved performance, with more efficient memory caching and pre-fetching.

However, unlike the other hardware-level CPU flaw Meltdown, which only affects Intel processors, Spectre is more hard to exploit and there are no reports of it being used outside of lab and proof-of-concept cyber attacks.

We as an industry probably aren't willing to settle for slower processors that might be vulnerable unless there are proof of concept exploits available.

"The pledge is likely brand management more than a real thing that will markedly increase security".

Vanessa Coleman

Comments