White Papers

ManualsBrandsDell ManualsConverged InfrastructureSecurity Solution Resources

Direct from Development

Server and Infrastructure

Engineering

Defense in-depth: Comprehensive Security on

PowerEdge AMD EPYC Generation 2 (Rome) Servers

Introduction

In the wake of Spectre and Meltdown and endless other side-channel

issues, and with predictive indicators showing that new forms of attack

are likely – security is a critical requirement for servers. And it is

important to ensure that server security is at layers within the systems so

that malicious activity can be mitigated in numerous ways. PowerEdge

servers with AMD Rome processors use a multi-layer, end-to-end

approach of security to help ensure that users’ data and assets are

protected, see Figure 1.

Figure 1: Layers of security in PowerEdge AMD Rome-based servers

Layer 1: AMD EPYC-based System Security for

Processor, Memory and VMs on PowerEdge

The first generation of the AMD EPYC processors have the AMD Secure

Processor – an independent processor core integrated in the CPU

package alongside the main CPU cores. On system power-on or reset,

the AMD Secure Processor executes its firmware while the main CPU

cores are held in reset. One of the AMD Secure Processor’s tasks is to

provide a secure hardware root-of-trust by authenticating the initial

PowerEdge BIOS firmware. If the initial PowerEdge BIOS is corrupted or

compromised, the AMD Secure Processor will halt the system and

prevent OS boot. If no corruption, the AMD Secure Processor starts the

main CPU cores, and initial BIOS execution begins.

Tech Note by

Mukund Khatri

Craig Phelps

Summary

Security in servers is no

longer an afterthought – it

is a key consideration in

the choice of a server

provider and platform.

Dell EMC approaches

security in multiple layers

to best protect customer

assets and data. This

includes not just security

built into the system and

components, but also to

manufacturing processes

and ensuring a secure

supply chain.

Summary of content (6 pages)

PAGE 1
Direct from Development Server and Infrastructure Engineering Defense in-depth: Comprehensive Security on PowerEdge AMD EPYC Generation 2 (Rome) Servers Introduction Tech Note by Mukund Khatri Craig Phelps Summary In the wake of Spectre and Meltdown and endless other side-channel issues, and with predictive indicators showing that new forms of attack are likely – security is a critical requirement for servers.
PAGE 2
The very first time a CPU is powered on (typically in the Dell EMC factory) the AMD Secure Processor permanently stores a unique Dell EMC ID inside the CPU. This is also the case when a new off-the-shelf CPU is installed in a Dell EMC server. The unique Dell EMC ID inside the CPU binds the CPU to the Dell EMC server.
PAGE 3
Layer 2: PowerEdge Systems Security All Dell EMC PowerEdge servers offer built-in security that supports customers with compliance, preventive security, and fast means to recover in the event of errors or breaches. This includes FIPs/Common Criteria Compliance, immutable silicon root of trust (PowerEdge CPUs have a Dell signature: once it is used in a Dell system if cannot be used in another server), digitally signed firmware updates, automatic BIOS recovery, firmware rollback, and more.
PAGE 4
Dell also maintains certification with the United States Customs and Border Patrol’s Customs-Trade Partnership Against Terrorist (C-TPAT). This logistics security program is recognized as compatible with similar programs around the world, including the Authorized Economic Operator (AEO), Canada’s Supply Chain Assurance v4.0 | Dell Inc., 2018 4 Partners in Protection, and Singapore’s Secure Trade Partnership programs.
PAGE 5
2. Supply Chain Security a. Physical (factory/manufacturing) – factories where Dell products are built must meet specified Transported Asset Protection Association (TAPA) facility security requirements. Dell also maintains certification with the United States Customs and Border Patrol’s Customs-Trade Partnership Against Terrorist (C-TPAT). b.
PAGE 6
In Conclusion Security must be designed within the architecture of the server to effectively withstand sophisticated cyber crime: phishing attacks that harvest credentials, advanced persistent threats (taking control of firmware), data exfiltration (stealing data). Yet it’s not just the server features that need to support customer security – it is also necessary to provide protection against the possibility of corruption in manufacturing and within the server supply chain.