BCDVideo Meltdown Spectre Response

In early January 2018, two major computer processor vulnerabilities were exposed. Dubbed Meltdown and Spectre, nearly every processor built in the last 20 years was left without basic security for its kernel memory – the protected core of an operating system.

Due to the way processors handle speculative execution – how modern processors achieve accelerated performance – a potential attacker can exploit the CPU vulnerabilities to gain access to the extremely sensitive data protected in the kernel memory. This includes passwords, cryptographic keys, and video data.

The Meltdown and Spectre vulnerabilities were especially prevalent on Intel processors and were met with a flurry of firmware and BIOS patches by the large-scale server manufacturers. While the patches were necessary to rapidly remove these critical vulnerabilities, processor-intensive tasks like IP video recording will see a potential slowdown in performance. Video recording places additional stress on the archiver, therefore special consideration is needed versus off-the-shelf IT servers.

Performance Testing Results

System testing was performed to find the expected slowdown after implementing the Meltdown and Spectre firmware and BIOS patches.

Test Configuration:

  • Recording 30 cameras at 150 Mb/s
  • Recording and viewing 15 cameras at 30 Mb/s

Machine Specs:

  • OS – Windows 10 Pro 64-bit
  • Processor – Intel Xeon E5-2620V4
  • Memory – 16 GB

The Meltdown firmware patch was seen to have a negligible effect on system performance – increasing CPU load less than 1%. A more sizeable increase in CPU load was found after testing the BIOS patch for the Spectre vulnerability. Recording devices experienced CPU load increases up to 25-30% – when viewing live or playback video, CPU load nearly doubled.

While the highest CPU load was seen below 50% utilization, systems with higher throughputs may see CPU usage approach 100%.

BCDVideo’s Response & Recommendation

To fully repair the Meltdown and Spectre vulnerabilities, both Windows firmware and the BIOS patches must be applied. Of these two, the BIOS update has a significantly larger impact on CPU load.

All BCDVideo servers are based upon Intel processors. To offset potentially adverse performance due to the necessary firmware and BIOS patching, we will be purpose-building higher performing processor chipsets, and if the situation warrants it, with an additional processor to maintain the exceptional recording performance security integrators and their customers have come to expect.

As always, we recommend following security best practices to keep your systems secure. As with any sensitive data, video surveillance represents an untapped pool of information. Updating default passwords, limiting access to a small number of users, and monitoring all system activity will help keep your video system secure from most threats.

Buffalo Grove, Ill., Sept. 9, 2020 – BCDVideo, the security industry’s leader in providing purpose-built video data infrastructure solutions, has been named to the National Association for Business Resources’ Summer 2020 Best and Brightest Companies to Work For in the Nation list. The 2020 Summer National winning companies were assessed by an independent research firm […]

Buffalo Grove, IL – June 1, 2020 – BCD International, the security industry benchmark in providing innovative technological leadership and extraordinary service, announced today that CRN®, a brand of The Channel Company, has named BCDVideo to its 2020 Solution Provider 500 list. The Solution Provider 500 is the industry standard for recognizing the highest performing technology integrators and strategic solution […]

On March 8, people across the world will celebrate International Women’s Day. At BCD, some of our team members submitted their favorite quotes from inspirational women. Susan Komarchuk, Human Resources Director There is no limit to what we, as women, can accomplish. Michelle Obama Maureen Carlo, Director of Strategic Alliances Great minds discuss ideas; average […]

ISC West 2020

Update March 6, 2020: ISC West has been postponed until July. The dates of the show have yet to be determined. BCD International, along with its three divisions—BCDVideo, Video Storage Solutions and BCDOEM—will be unveiling several new video surveillance solutions at ISC West this year in Las Vegas. From industrial servers and GPU analytics servers […]

Jeff Burgess, Chief Executive Officer of BCD Interntional, Inc. began his career in 1979 as a shipper for a computer company and worked his way up to Vice President of Sales in just seven years. His career in the IT industry continued at various other companies over the course of 20 years before he founded […]