Which is more secure?

Which computer is more secure? "Mac!" says the dedicated Macintosh user. Or is it computers with the new Windows OS? Or are they both equally likely to have security problems?

There is a lot of debate in the security industry regarding which platform is more secure.

Many people assume that the Mac is so secure - perhaps because they have heard of people that have experienced security failures under Windows. Others say that the the Mac is just as insecure as Windows, if not more so.

The LanceJ Security Test

I propose the following simple test that can be used to measure which platform is more secure from the vantage point of the public.

Buy a quantity of new, stock Windows 7 and Macintosh computers from a retailer. For example, buy 5 new Mac Minis and 5 new Windows 7 HP desktops from BestBuy.
Distribute each of the sealed, boxed computers to a regular, randomly selected family. Give each of those families identical, stock internet access via, say, Comcast. Tell the families to set up the computers and use them in their homes.
Collect the computers after a set amount of time - perhaps 6 months.
Count the number of machines that have been compromised.

The platform with the fewer detected compromises was generally less likely to be a security problem to its user during the course of the study.

Limitations

Clearly such a study wouldn't measure all aspects of security. For example:

It doesn't count compromises that are not or cannot be detected.
It doesn't count potential OS vulnerabilities, phishing attack vulnerabilities, etc.
It doesn't measure security compromises of the future.

Perhaps a security researcher could devise a way to accurately count these other data.

Other Approaches

Another simple approach to measuring "platform security" could be pursued by the general purpose "computer repair shop". As new customers come in, measure the number of computers requiring repair due to security failures. However, it seems that a research project based on "repair shop" data would be complicated. Should the age of the computers be considered? And how does one consider the flawed machines with non-security related failures?

Next Steps?

I'd be surprise if there haven't been security researchers that have performed this exact kind of test. After all, researchers spend the bulk of their time doing research and publishing. If you are pursuing such a research study, or if know of a recent study that performed a similar test, please post a link in the comments section.

Fixing a SodaStream Jet, part 1: Disassembly Guide

I've had my SodaStream Jet for years, and once in a while something has gone wrong. Disassembly is the first step to repair. Start with this article to see how to disassemble the SodaStream, and then once you have that down, scroll through my other articles to see how I repaired specfic SodaStream problems. SodaStream Jet Disassembly Guide Tools Required Flat head screwdriver Phillips head screwdriver 1. Remove the Carbonator. Duh. 2. Remove the black panel lever The front big black tilt lever needs to be removed first. Removing this panel is tricky, but it isn't impossible. Looking up at the bottom of the black panel, there are two tabs, one on the left and one on the right. These tabs fully secure the panel in place. The trick is to use a flat-head screwdriver under the plastic to gently lever the tabs out of the way. Note in the pictures how I approach these tabs with my screwdriver. I usually release the left side first, and then I release the right

Fixing my Wahl 9918 Groomsman Beard and Mustache Trimmer

Not everyone would bother repairing a $25 beard trimmer, but why not fix something for under $5 instead of spending another $25? My Wahl 9918 Groomsman Beard and Mustache Trimmer has admirably performed its beauty duty for many years, but the time came when the battery just wasn't holding a charge any more. Most people would just put the trimmer in the trash and buy a new one, but I figured I could repair my otherwise excellent Wahl and save some money. In fact, even high priced trimmer and rotary shaver brands, like Norelco and Remington, can be easily repaired using a process similar to the one I used to fix my Wahl. Read on to find out how. I opened up the Wahl by popping off the black plastic faceplate with a tiny flathead screwdriver, which revealed two screws. By removing the two screws I was able to easily open up the unit, revealing the guts of the device. Backplate off, Revealing the screws The internals are rather simple: a motor, a simple circuit boar

Fixing a SodaStream Jet, Repair #2 - Broken Fill Button

My Soda Stream Jet's fill button broke, which means I can not longer carbonate water by pressing the pushbutton. This caused all sorts of grief in my household. Here is how I managed to repair my Jet to give it another 10 years of life (hopefully). First, a look at the button The fill button on the top of the SodaStream is actually a simple lever. Pressing down on the button moves a pin that does the actual work of pressing open the Carbonator's valve. Unfortunately, the axis point is fairly thin and can see a lot of stress. That's where my Soda Stream button cracked. [ I think the usage tip here is "don't over-press the button like a gorilla, it doesn't do anything but put high stress on the button."] Cracked levering point of the button The Pesky Lever Retaining Pin The Fix It was pretty easy for me to replace the button: Take off the back of the Soda Stream and remove the carbonator. Push out the the button lever's steel retaining pin. This takes qu

Sodastream Carbonator Leakage, Usage, and Weight

SodaStream 60L "Carbonator" CO2 cylinders have a specific weight when empty, plus about 410 or so grams for the CO2 they should have when they're "full". A little while ago I went to buy a replacement Carbonator from my local hardware store. The dealer pulled a new Carbonator out of the box and sensed it was lighter than usual. He put the "light" Carbonator in the "empty" pile and sold me a different one. At that moment I concluded that it would be smart of me to weigh both new and empty SodaStream carbonators. Here are the results. Weighing a SodaStream Carbonator - for both Science and Consumer Protection. The dealer told me that sometimes the carbonators leak after they leave the SodaStream filling facility. That means there could be an opportunity for customers like me to get ripped off! The SodaStream cylinders I buy claim to have a net product weight of 410 grams - and that means that a full Soda Stream Carbonator shou

Adding a Water Flood Sensor to my Vista-20p alarm system

My Honeywell Vista 20p alarm system is fairly comprehensive, but I want one more feature: an alarm that lets me know when my sump pump isn't working properly. Here is how I added one for about $8 in special parts. I'm afraid of a flood in my finished basement. I'm fortunate - my basement sump pump system is already redundant, with two independent pumps and two outflow pipes. The primary pump kicks in when the water level reaches 6 inches, and if that doesn't work, then the backup pump kicks in when the water level reaches 7 inches. The backup pump should never kick in unless the primary pump is having a problem pumping. But there is a problem with this setup: I might never know if my primary pump has failed, leaving me with no redundancy. I want to be informed when I have one (or god forbid, two) pump failures. My goal is to have my Vista 20p alert me when the sump's water level is ever beyond the point where my primary pump should have kicked in, alerting me

The Yamaha DD-65 and YDD-60 Digital Drums

Almost everyone I know who is into drums should get their hands on the Yamaha DD65 . It's a low cost, fun little kit that you can throw in your car to jam with your buddies. It's a lot easier than throwing your gear in your Subaru. The DD-65, also known as the YDD-60. Eight pads in a pretty package. I've owned the older, venerable DD-55 for about five years. The DD-55 is the ancestor of the newer DD-65, and is an evolution of the DD-50, which was first released some time in the mid 1990s. I just put my DD-55 on this light snare drum stand it's ready for some jamming. The classic DD-55. Seven pads of rockin' fun, since about 2001. Yes, everyone will tell you that the DD-55 isn't actually a real drum kit. No kidding. However, a skilled drummer can get some great sound out of this little box, and you can definitely keep the band together with it. Plus, it's perfect for apartment living.

The Lance J. Technoweb

Search This Blog