Surface Guidance to protect against speculative execution side-channel vulnerabilities

Applies to: Surface Pro 4Surface BookSurface Studio 1 More


Since January 2018, the Surface team has been publishing firmware updates for a new class of hardware vulnerabilities that involve speculative execution side channels. The Surface team has not received any information to indicate that these vulnerabilities have been used to attack customers currently, and the team continues to work closely with the Windows team and industry partners to protect customers. To get all available protection, both firmware and Windows system updates are required.


More Information

Surface Pro 6, Surface Laptop 2 and Surface Studio 2 (announced in October 2018) are shipping with microcode that includes the latest mitigations for the vulnerabilities which are discussed in this article.

Note Surface hub has implemented defense-in-depth strategies. For more information, go to the following topic on the Microsoft website:

Differences between Surface Hub and Windows 10 Enterprise

Because of this, we believe that exploits that use these vulnerabilities are significantly reduced on Surface Hub.

The Surface team is focused on making sure that our users have a secure and reliable experience. We will continue to monitor and update devices as required to address these vulnerabilities and keep the device reliable and secure..