Daniel_Wachsmuth

Meltdown and Spectre Vulnerabilities - Secure Cloud and Identity Service Update

Discussion created by Daniel_Wachsmuth Employee on Jan 8, 2018

All CA SaaS services have undergone an initial analysis to identify any impact from the Meltdown and Spectre exploits. We continue to work with our partners to ensure all patches and security updates are applied when available during the next maintenance window.

 

Since the Spectre and Meltdown exploits require local server access, the risk to customers using CA SaaS products is minimal as only CA employees supporting the SaaS service have that level of access.

 

CA SaaS implements a defense in depth approach to the security of our environments which mitigates the impact of any one vulnerability. We leverage strong authentication, privileged access management, vulnerability and patch management, segmentation, and security monitoring to prevent or detect any malicious activity.

 

We appreciate your support and understanding as we complete our corrective action plans to ensure the stability and security of your service.

Outcomes