Feeds

US Army loads up on Apples for 'better security'

Mac users to suffer Chinese backdoor invasion?

Securing Web Applications Made Simple and Scalable

In a development which may mean good or bad news for the partly-eaten-fruit-themed prestige computer firm, it has been revealed over the festive season that the US Army is increasing its use of Apple Macs.

An article in Forbes magazine revealed the military's (rather limited) newfound passion for Steve Jobs' high-priced Unix boxes. The biz mag quoted Lieutenant Colonel C J Wallington of the Army office of enterprise information systems as saying that Macs were more secure than Windows machines - an assertion often made by the Cupertino marketing department.

Wallington referred specifically to Apple Xserve systems introduced to Army data centres.

"Those are some of the most attacked computers there are. But the attacks used against them are designed for Windows-based machines, so they shrug them off," he said.

Though Apple penetration into the vast US military IT infrastructure has been small thus far, it has increased lately as part of a push to increase computer security by increasing diversity. The idea is that with a variety of different systems in use, no one attack can bring down everything. US Army CIO General Steve Boutelle inaugurated this plan in 2005.

Since then, the primary obstacle to widespread military Mac adoption (setting aside price and app software availability) has been compatibility with Common Access Card (CAC) keycard kit, widely used by US military computers. However, according to Forbes, CAC for Mac will be available from February 2008. The necessary code has been developed by Texan firm Thursby Software.

There are those, of course, who argue that reliance on Mac OS machines for security - on the theory that many fewer exploits have been developed against such platforms - is no more than security by obscurity. As soon as people (for instance the widely-feared Chinese military cyber forces) are motivated to attack Apple kit, it will be found to have many vulnerabilities previously unknown. Even a fairly small Mac takeup by the US military could furnish this motivation, leaving Apple fanciers worldwide in a situation similar to Windows users of recent years.

Of course one might also argue that attackers interested specifically in the US military would not publicise their exploits, and thus that ordinary civil users would have relatively little to fear.

Meanwhile, some also cast doubt on the whole security-through-diversity approach. Forbes also quoted Charlie Miller of Independent Security Evaluators, who gave it as his opinion that more platforms meant all were pulled down to the level of the weakest link.

"In the story of the three little pigs, did diversifying their defenses help? Not for the pig in the straw house,"* he said.

The Forbes writeup is here

*Though in fact, as we recall all three pigs were saved by fleeing to the brick house. Had straw-house piggy not been part of a diversified porcine defence strategy, his brothers would have also been in straw houses and all would have become wolf chow. Perhaps diversification would have been good in the case of a flood, in which the straw and wood dwellings could be easily turned into boats; unlike the lupine-halitosis-proofed brick one. Miller may be hot stuff at computer security, but he isn't much cop at making an argument using irrelevant references.

The Essential Guide to IT Transformation

More from The Register

next story
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
EU's top data cops to meet Google, Microsoft et al over 'right to be forgotten'
Plan to hammer out 'coherent' guidelines. Good luck chaps!
US judge: YES, cops or feds so can slurp an ENTIRE Gmail account
Crooks don't have folders labelled 'drug records', opines NY beak
FLAPE – the next BIG THING in storage
Find cold data with flash, transmit it from tape
Seagate chances ARM with NAS boxes for the SOHO crowd
There's an Atom-powered offering, too
Gartner: To the right, to the right – biz sync firms who've won in a box to the right...
Magic quadrant: Top marks for, er, completeness of vision, EMC
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Mobile application security vulnerability report
The alarming realities regarding the sheer number of applications vulnerable to attack, and the most common and easily addressable vulnerability errors.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.