Comments on: Security Review: Portable Computing

By: alexmeng

alexmeng — Fri, 13 Mar 2009 15:06:58 +0000

Something I have always wondered about portable security is even if there is application security and protocol security, but what about securing the authenticate of the user using the portable devices? I’ve noticed for laptops many people are use to setting a password. But I have also seen that smartphones for example, many people don’t set passcodes to use them, making it easy for someone to possible steal from and impersonate them until the authorities are notified.

This becomes a bigger concern when people began to integrate smartphones into their daily lives, storing their e-mail, contacts, website information, active web sessions to sensitive websites.

Without securing the authentication of the user, using the portable device, the security in protocols or applications may be irrelevant. Therefore, as security increases in portable computing communications, so should user knowledge in securing their physical portable device!

By: Matt

Matt — Sat, 07 Mar 2009 04:02:09 +0000

There’s no silver bullet here. Even ingenious engineering will not be enough to prevent someone from simply forgetting a portable device in a coffee shop. And while encryption and polarized screens could potentially mitigate “shoulder surfing” and theft, they would not eliminate them completely (a determined attacker with physical access to a machine is capable of almost anything). And the usability cost would be higher even than Vista’s UAC, which draws a lot of ridicule already.
A better solution would be improved education about computer security. The specifics of encryption and security protocols wouldn’t be necessary — influencing practices like situational awareness to keep track of your items and who is around you can succeed even where clever security schemes can fail, since simple awareness can circumvent most crimes of opportunity anyway. The basic principles of guarding your mobile device could, in my opinion, be as simple as practices like locking your door at night or keeping in well lit areas when walking around at night. The biggest barrier to raising security awareness is presenting it as complicated and obfuscated, which will immediately put most of the population off of implementing a few simple practices.

By: devynp

devynp — Sat, 07 Mar 2009 02:22:20 +0000

It’s amazing how portable computing devices, such as laptops or cellphones allow people to be in contact with other people 24/7. More people find the need to have smartphones, because of its handy size. But most people don’t realize that phones are less stable than computers. They don’t have stable operating systems and contains a lot of patches, so it can be attacked more easily.

By: Kevin Wallace

Kevin Wallace — Fri, 06 Mar 2009 02:03:30 +0000

It will be interesting to see the security dynamic that emerges here next year as CSE wants to give every student a netbook.