Toll Free 1-844-388-IRON (4766)
facebook
linkedin
email
  • Home
  • About Us
  • IT Executive Search
    • Partnering with the Right Search Firm
    • The New Iron Search Process
    • Why New Iron Executive Search?
  • IT Staffing
    • Cloud Staffing Solutions
    • ERP Staffing Solutions
    • Infrastructure Staffing Solutions
    • Mainframe Staffing Solutions
    • Storage Staffing Solutions
  • The New Iron Blog
  • Contact Us

Meltdown and Spectre on System Z

by
Blog
0 Comment

Meltdown and Spectre on System ZThis past January, it was revealed that there are two significant design vulnerabilities in the majority of microprocessor chips used to run our digital world. Meltdown and Spectre are design vulnerabilities inherent in the majority of chipsets used since 1995, including the mainframe.

“Why is it called Meltdown?”
“The vulnerability basically melts security boundaries which are normally enforced by the hardware.”

“Why is it called Spectre?”
“The name is based on the root cause, speculative execution. As it is not easy to fix, it will haunt us for quite some time.”

For the mainframe, the most problematic vulnerability appears to be Spectre, as the mainframe chipset uses speculative execution. And what exactly is speculative execution?

Webster Dictionary defines it as “A technique allows a superscalar processor to keep its functional units as busy as possible by executing instructions before it is known that they will be needed.”
This allows the processor to operate at a significantly higher efficiency.

IBM has released security patches for systems running Z/OS, Linux on Z and Z/VM. You should verify with your systems programmer that the appropriate PTF’s (Program Temporary Fix) has been installed on your system.

Even with the current PTF’s applied, IBM has strongly advised that you actively monitor the IBM Support Portal and IBM Psirt Blog for updates on these vulnerabilities as it is possible that updated PTF’s will be released.

Now for a little good news:

In order for someone to exploit these vulnerabilities, a person must have authorized access to the system to run code. If you are following best practices with your system security and limiting access to only those that have the proper clearance, your exposure should be very low. And, as of this writing, there does not appear to be any known malware associated with the vulnerabilities.

At least, for now…

If you have a temporary or permanent IT Mainframe Support need or a question about our Mainframe Support services and would like to learn more, please contact us today.

Social Share
More from The Mainframe Blog
  • It’s Makeover Time for the Mainframe
  • Mainframes: An Old Friend in a New Era
  • Breaking Up is Hard to Do: Migrating from the Mainframe
  • The High Cost of a Mainframe Going Down
  • Mainframes and Digital Transformation
  • The Growing Use of Mainframes Presents New Challenges
  • Mainframe Trends: What’s Hot and What’s Not
  • How Mainframe Technology Supports Modern Business Demands
  • Disaster Recovery on the Mainframe
  • How Legacy Systems Help Meet the Computing Challenges of Today
  • The Security Advantages of Mainframes
  • Mainframe Staffing Shortages
  • Why are Mainframe Computers Still Relevant?
  • Meltdown and Spectre on System Z
  • Aren’t Mainframes Going the Way of the Dinosaurs?
  • Your Mainframe Workforce is Aging
  • The Mainframe Computer Storage Bubble
  • Security and the Mainframe
  • Client Participation Equals Success
  • Benefits of Having Access to Senior Skill Level Mainframe Skill Sets
  • Documenting the Mainframe
  • CICS Upgrade
  • Mainframe and Device Support

How Can We Help?

  • Home
  • About Us
  • Contact Us
  • IT Executive Search
  • IT Staffing
  • The New Iron Blog

Contact Us Today!

The NEW IRON Mainframe Blog

  • It’s Makeover Time for the Mainframe
  • Mainframes: An Old Friend in a New Era
  • Breaking Up is Hard to Do: Migrating from the Mainframe
  • The High Cost of a Mainframe Going Down
  • Mainframes and Digital Transformation
© 2020 New Iron Solutions, Inc.
Call us Toll Free: 1-844-388-IRON (4766) • O: 847-854-9120 • F: 847-854-9212
Algonquin, Illinois 60102 USA