BCDVideo Meltdown Spectre Response

In early January 2018, two major computer processor vulnerabilities were exposed. Dubbed Meltdown and Spectre, nearly every processor built in the last 20 years was left without basic security for its kernel memory – the protected core of an operating system.

Due to the way processors handle speculative execution – how modern processors achieve accelerated performance – a potential attacker can exploit the CPU vulnerabilities to gain access to the extremely sensitive data protected in the kernel memory. This includes passwords, cryptographic keys, and video data.

The Meltdown and Spectre vulnerabilities were especially prevalent on Intel processors and were met with a flurry of firmware and BIOS patches by the large-scale server manufacturers. While the patches were necessary to rapidly remove these critical vulnerabilities, processor-intensive tasks like IP video recording will see a potential slowdown in performance. Video recording places additional stress on the archiver, therefore special consideration is needed versus off-the-shelf IT servers.

Performance Testing Results

System testing was performed to find the expected slowdown after implementing the Meltdown and Spectre firmware and BIOS patches.

Test Configuration:

  • Recording 30 cameras at 150 Mb/s
  • Recording and viewing 15 cameras at 30 Mb/s

Machine Specs:

  • OS – Windows 10 Pro 64-bit
  • Processor – Intel Xeon E5-2620V4
  • Memory – 16 GB

The Meltdown firmware patch was seen to have a negligible effect on system performance – increasing CPU load less than 1%. A more sizeable increase in CPU load was found after testing the BIOS patch for the Spectre vulnerability. Recording devices experienced CPU load increases up to 25-30% – when viewing live or playback video, CPU load nearly doubled.

While the highest CPU load was seen below 50% utilization, systems with higher throughputs may see CPU usage approach 100%.

BCDVideo’s Response & Recommendation

To fully repair the Meltdown and Spectre vulnerabilities, both Windows firmware and the BIOS patches must be applied. Of these two, the BIOS update has a significantly larger impact on CPU load.

All BCDVideo servers are based upon Intel processors. To offset potentially adverse performance due to the necessary firmware and BIOS patching, we will be purpose-building higher performing processor chipsets, and if the situation warrants it, with an additional processor to maintain the exceptional recording performance security integrators and their customers have come to expect.

As always, we recommend following security best practices to keep your systems secure. As with any sensitive data, video surveillance represents an untapped pool of information. Updating default passwords, limiting access to a small number of users, and monitoring all system activity will help keep your video system secure from most threats.

16Oct 2012
BCDVideo Makes Fast Growth 50 List

NORTHBROOK, IL – October 16, 2012 –IP video storage and intelligent building solutions provider BCDVideo, has been recognized as one of CRN’s 2012 Fast Growth 50 Up-and-Coming companies. Compiled by UBM Channel as an extension of the Fast Growth 100 list, the Fast Growth 50 highlights emerging IT channel companies that have most successfully driven revenues over […]

22Feb 2013
Technology Partner of the Year

Milestone Systems Names BCDVideo Technology Partner of the Year Northbrook, IL – Milestone Systems, headquartered in Copenhagen, Denmark, and the global industry leader in open platform IP video management software (VMS), tapped BCDVideo as their 2012 Technology Partner of the Year at their annual partner event February 18-19 in Las Vegas, Nevada. In presenting BCDVideo […]

20Aug 2013
Inc. 5000 List of Fastest Growing Companies

BCDVideo named on Inc. 5000 List of Fastest Growing Companies Milestone Technology Partner of the year BCDVideo, today announced that it has been named to Inc. Magazine’s annual ranking of the 5000 fastest-growing privately-held companies in the United States. Northbrook, IL. – August 20, 2013 BCDVideo, a global provider specializing in IP security storage, announced […]

07Nov 2013
OnSSI and BCDVideo Launch EVO Series

OnSSI and BCDVideo Launch EVO Series Through Joint Technology Agreement Through a new joint technology agreement with OnSSI, BCDVideo (Northbrook, IL) is launching the new EVO Appliance Series. Purpose-built specifically to deliver the functionality of OnSSI’s Ocularis Video Management System (VMS), the EVO Series provides a cost-efficient turnkey video surveillance solution ideal for small and […]

11Feb 2014
SDM Interview With BCDVideo Jeff Burgess

Growth in the 2014 Video Surveillance Market: Interview With BCDVideo’s Jeff Burgess As part of the SDM State of the Market series, SDM has great conversations with industry professionals who offer tremendous insight. Sadly, we just don’t have the space to share all their information. This interview with Jeff Burgess, president, BCDVideo, Northbrook, Ill., is […]

03Mar 2014
External Stand-Alone Storage Arrays

External Stand-Alone Storage Arrays BCDVideo has released their new SuperNOVA Series of external stand-alone storage arrays, which have been developed for IP video projects requiring large “We have manufactured these units with the server incorporated into the standalone solution. The server, which can support up to 1000Mb/s of video ingestion, is powerful enough to drive […]