IT Security & Network Security News & Reviews: Will Google Chrome OS Security Be Tough Enough?

Locking Down the OS

Given that the focus is on supporting cloud applications, this should come naturally. By turning Google Chrome OS into a "toaster" and running primarily—if not only—Web apps like Google Docs and Picasa, Google can substantially reduce the attack surface, noted Scott Crawford, an analyst with Enterprise Management Associates.

Dealing with Plug-ins and Add-ons

Google could take an Apple iPhone App Store approach to plug-ins or add-ons, Gartner analyst John Pescatore said, and have a certification/vulnerability assessment vetting process rather than just letting any piece of software plug in.

Encrypting Data

Google could build in native support for encryption of any data stored through the browser, whether locally or in the cloud, said Pescatore.

Playing in a Sandbox

Google could implement a feature like SELinux, which adds mandatory access control to Linux. This would allow the OS to sandbox malicious processes to prevent them from infecting the rest of the system, said Forrester analyst Andrew Jaquith.

Focus on Securing the Browser

If most of the way the user interacts with the system or applications is through the browser, Google needs to put a focus on ensuring that its Chrome browser is secure, said Jaquith.

Recent Slideshows

• Chrome for Android Mobile Browser Proves Speedy, Slick
  View Slideshow >

• Motorola Droid 4 Offers Killer QWERTY Slider Keyboard
  View Slideshow >

• iPad 3: 10 Design Ideas Apple Should Borrow
  View Slideshow >

• 10 Hot Tech Products Sure to Fire Up the Market in 2012
  View Slideshow >

• iOS, Android App Economy Fuel 500K U.S. Jobs: TechNet
  View Slideshow >

• Microsoft's Windows 8 Minimized Ribbon, Sensors Among New Feature[..]
  View Slideshow >