Security Hardware & IT Security Software - eWeek

Home

Security Hardware & IT Security Software

10 Lessons Google Must Learn About OS Security

Plan, Launch and Manage Your Data Centers More Efficiently

Turn Data into Results with Better Business Intelligence

Smarter Virtualization – Key Building Block for Dynamic Infrastructure


	Save Money and Improve Agility: Virtualize with Sun SPARC Enterprise M-Series Servers The Next Step in Virtualization: Moving Demanding Applications to Virtual Environments Powering Business Productivity with Dell OptiPlex Desktops See All Resources >

Security Hardware & IT Security Software

10 Lessons Google Must Learn About OS Security

Share
By: Don Reisinger
2009-11-19
Article Rating:

/ 6

There are 5 user comments on this Security Hardware & IT Security Software story.

Table of Contents:

Rate This Article:

E-mail

PDF Version

10 Lessons Google Must Learn About OS Security
( Page 1 of 2 )

News Analysis: Google is new to the operating system market, so it has to demonstrate that it understands how to build and maintain a secure Web OS. The history of Windows security has shown there are many avenues of attack against a desktop operating system. There are even more potential attack strategies for an online OS. But whether Google has learned the many hard lessons of Web security is very much in doubt at this point.

Much has been made of Google's intentions in the operating system space. The company has made it clear that it wants its products to be used on netbooks. It wants to be the first major company to deliver an online operating system that can compete with the likes of Windows 7 Starter Edition and Linux distributions. But is Google really prepared for the challenges that await it? Creating and maintaining an operating system is a dirty business. It takes a lot of effort and understanding of what malware producers are trying to do.

Realizing that, Google needs to be prepared. It needs to understand that how well it secures the online world means nothing when it comes to operating system security. Sure, its creation will be an online OS, which makes it a little different from Windows or Mac OS X, but the basic premise remains: Malicious hackers want to take control over operating systems for their own financial gain. It's sad, but true.

That's why Google must learn some basic lessons if it wants to be successful in the OS space. Here are some lessons that Google will definitely need to face:

Resource Library:

1. Malicious hackers want in

The first lesson Google must learn is that malicious hackers want to hit as many computers and their users as possible. For the most part, that has meant that they've focused their time on Windows. But as Mac OS X gains in popularity, they have switched gears to also target Apple's operating system. Given the hype and fanfare that will undoubtedly surround Chrome OS, it's not beyond the realm of possibility for Google to have to face many more malicious hackers than it might expect. They want in. There's no doubt about it.

2. Users need all the help they can get

When it comes to operating system security, some of the blame can be placed on users. They click on attachments they shouldn't, they open links to unknown places and much more. Realizing that, Google needs to do what Microsoft and Apple have done and make Chrome OS as simple as possible. Important security matters should be handled by the software. Users simply can't be trusted to make the right decisions.

3. Nothing is totally secure

It's easy for software vendors to say that their operating systems are the most secure on the market, but it's even more important for them to acknowledge that no matter how safe an operating system might be, it's never totally secure. Overconfidence could get Google into trouble. Is the operating system secure? Sure. But be ready for exploits. They will be coming.

4. Google presents a big target

Google should also realize that it's a major target. The hacker community is not fond of Google. The community considers Google, like Microsoft, to be a major target that it wants to take down. So far, hackers haven't been all that successful with the company's search and online products. But that could all change when Google attempts to maintain security on an operating system. Watch out, Google.

Next: Keeping Track of All Avenues of Attack >>

	Reader Comments: 10 Lessons Google Must Learn About OS Security
>>> Post your comment now!
	I can't i can't believe the editor has accepted such a shallow and generally uninteresting article. Or did they only look at "google must learn security"... Posted At: 11-23-09 By: insider MoD

	vapid generalities do not an article make! god, what an incredibly shallow and vapid article! it could have been about most any service, and contained no real insight into what sort of... Posted At: 11-20-09 By: Mark Hahn

	A user comment on this article Google is boldly stating that they are "going back to the basics and completely redesigning the underlying security architecture of the OS so that... Posted At: 11-20-09 By: Tim Cronin

	? Was this written by someone who even looked at the chromium OS website? several of these points seem rather invalid to me. Posted At: 11-19-09 By: Anonymous

	Comment Great articles, in general terms, i agree with the "alert" to Google, it's not the same when you make a mail aplication, a browser, a search engine,... Posted At: 11-19-09 By: Carlos Rondón Ávila

	>>> Post your comment now!



	>>> More Security Hardware & IT Security Software Articles >>> More By Don Reisinger

Email Article To Friend ♦ Print Version Of Article ♦ PDF Version Of Article

FEATURED SPONSORED MESSAGE

Hitachi announces IT Operations Analyzer software

Monitor and diagnoses issues in multivendor network environments.

Web-based interface, agent-less, multiple network views and automated root cause analysis help maximize network availability and reduce expenses. Good for businesses with 50-250 nodes.

Download free 30-day trial

Brought to You By

FEATURED SPONSORED MESSAGE

Should You Be Using “up.time”?

Easily Monitor Virtual, Physical, and Cloud based assets, applications and services from a unified Dashboard with up.time

Deep Monitoring across platforms and best-of-breed reporting. Over 700 enterprise customers in 32 countries

Free Trial Download Here (Virtual Appliance available)

Brought to You By

Sponsors

DCIG Report: Get Near Real Time Backup & Recovery.

up.time Easily Monitors Virtual/Physical/Cloud. Free Trial.

Build your Multitenant Cloud App today on LongJump.

New & Easier Data Center Innovation & Integration.

Let Progress Software help your business make progress.

Expand on Demand. AT&T Synaptic Storage as a Service.

Learn more about EnterpriseDB @ the Postgres Center

See why ShoreTel is named best overall VoIP provider

CDW Healthcare offers the IT solutions you need.

One number. One voicemail. Sprint Mobile Integration.

10 Reasons to Upgrade to Windows Server 2008 R2.

See the easy to manage ScanSnap Network iScanner

FREE Sophos Encryption Tool: Encrypt, compress and share files easily.

	eWEEK RSS FEEDS and NEWSLETTERS
	Get eWEEK news delivered to your desktop with RSS eWEEK Free Newsletters

Issue Index \| Contact Us \| About \| Advertise \| Magazine Customer Service \| Site Map
	Security: Enterprise Networking Network Security Infrastructure Security How To: Data IT Security News Security Watch Blog Secure Channel Blog Storage: Data Storage Cloud Storage Storage Virtualization Network Access Storage Storage Reviews Storage News How To: Storage Storage Station Blog Computing: Apple OSX Linux Systems Windows 7 Managed Print Services Computer Reviews Microsoft Watch Blog Apple Watch Blog Google Watch Blog Communications: Enterprise Mobility Zone VoIP Solutions Wireless Technology Messaging Software Web Services Wireless News Mobile Reviews Apps & Development: Application Development Enterprise Apps Search Engines Database Software Web 2.0 IT Project Management Emerging Tech Blog CIO Insight Blogs CIOs
	Vertical Markets: Federal Government IT Health Care IT Finance IT Mid-Market Channel and VARs Careers Blog Value Added Resellers More eWeek Links: Green Computing Center Tech Knowledge Center Tech Newsletters Tech RSS Feeds White Papers Tech Podcasts Tech Videos Magazine Subscriptions Enterprise Websites: ZDE Home eWeek Baseline Magazine Channel Insider CIO Insight eSeminars and Events Publish Online Web Buyers Guide Developer Websites: Microsoft DevSource Dev Shed DeveloperShed ASP Free SEO Chat Codewalkers Tutorialized Scripts.com Dev Mechanic Dev Articles Web Hosters Dev Hardware Technology Websites: Device Forge Desktop Linux Linux Devices Windows for Devices PDF Zone Linux Watch Windows Migration Smarter Technology Enterprise TechBrief
	Use of this site is governed by our Terms of Use and Privacy Policy Copyright ©1996-2010 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt are trademarks of Ziff Davis Enterprise Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited. eWeek is your best source for the latest Technology News. ZDE Cluster 4 hosted by Hostway.

10 Lessons Google Must Learn About OS Security

Suggested Related Content: