Feeds

US Army loads up on Apples for 'better security'

Mac users to suffer Chinese backdoor invasion?

Maximizing your infrastructure through virtualization

In a development which may mean good or bad news for the partly-eaten-fruit-themed prestige computer firm, it has been revealed over the festive season that the US Army is increasing its use of Apple Macs.

An article in Forbes magazine revealed the military's (rather limited) newfound passion for Steve Jobs' high-priced Unix boxes. The biz mag quoted Lieutenant Colonel C J Wallington of the Army office of enterprise information systems as saying that Macs were more secure than Windows machines - an assertion often made by the Cupertino marketing department.

Wallington referred specifically to Apple Xserve systems introduced to Army data centres.

"Those are some of the most attacked computers there are. But the attacks used against them are designed for Windows-based machines, so they shrug them off," he said.

Though Apple penetration into the vast US military IT infrastructure has been small thus far, it has increased lately as part of a push to increase computer security by increasing diversity. The idea is that with a variety of different systems in use, no one attack can bring down everything. US Army CIO General Steve Boutelle inaugurated this plan in 2005.

Since then, the primary obstacle to widespread military Mac adoption (setting aside price and app software availability) has been compatibility with Common Access Card (CAC) keycard kit, widely used by US military computers. However, according to Forbes, CAC for Mac will be available from February 2008. The necessary code has been developed by Texan firm Thursby Software.

There are those, of course, who argue that reliance on Mac OS machines for security - on the theory that many fewer exploits have been developed against such platforms - is no more than security by obscurity. As soon as people (for instance the widely-feared Chinese military cyber forces) are motivated to attack Apple kit, it will be found to have many vulnerabilities previously unknown. Even a fairly small Mac takeup by the US military could furnish this motivation, leaving Apple fanciers worldwide in a situation similar to Windows users of recent years.

Of course one might also argue that attackers interested specifically in the US military would not publicise their exploits, and thus that ordinary civil users would have relatively little to fear.

Meanwhile, some also cast doubt on the whole security-through-diversity approach. Forbes also quoted Charlie Miller of Independent Security Evaluators, who gave it as his opinion that more platforms meant all were pulled down to the level of the weakest link.

"In the story of the three little pigs, did diversifying their defenses help? Not for the pig in the straw house,"* he said.

The Forbes writeup is here

*Though in fact, as we recall all three pigs were saved by fleeing to the brick house. Had straw-house piggy not been part of a diversified porcine defence strategy, his brothers would have also been in straw houses and all would have become wolf chow. Perhaps diversification would have been good in the case of a flood, in which the straw and wood dwellings could be easily turned into boats; unlike the lupine-halitosis-proofed brick one. Miller may be hot stuff at computer security, but he isn't much cop at making an argument using irrelevant references.

The Power of One eBook: Top reasons to choose HP BladeSystem

More from The Register

next story
Sysadmin Day 2014: Quick, there's still time to get the beers in
He walked over the broken glass, killed the thugs... and er... reconnected the cables*
Auntie remains MYSTIFIED by that weekend BBC iPlayer and website outage
Still doing 'forensics' on the caching layer – Beeb digi wonk
SHOCK and AWS: The fall of Amazon's deflationary cloud
Just as Jeff Bezos did to books and CDs, Amazon's rivals are now doing to it
BlackBerry: Toss the server, mate... BES is in the CLOUD now
BlackBerry Enterprise Services takes aim at SMEs - but there's a catch
The triumph of VVOL: Everyone's jumping into bed with VMware
'Bandwagon'? Yes, we're on it and so what, say big dogs
Carbon tax repeal won't see data centre operators cut prices
Rackspace says electricity isn't a major cost, Equinix promises 'no levy'
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Securing Web Applications Made Simple and Scalable
Learn how automated security testing can provide a simple and scalable way to protect your web applications.