« Security, scale and functionality - Part 3: Functionality | Main | GhostNet »

Far from smart phones

Duncan Hart

Does anyone know of a smart phone or mobile device that enforces account and privilege separation?

It's been a long held good practice to run user accounts with least level of system privilege and only use admin accounts when you absolutely have too. The obvious danger is that if you're always operating with elevated admin rights and if your device is compromised then the attacker runs with your admin rights. This is far from a perfect situation and can easily lead to security meltdown.

All the popular mobile devices and smart phones I'm aware of operate with full admin rights all the time which seems like security madness to me. Code signing of downloaded apps will help to establish some level of trust in the source on content, but all bets are off with content based attacks arriving via e-mail.

Bookmark and Share


Tags:

Posted by Duncan Hart on March 24, 2009 11:15 AM
| View blog reactions

TrackBack

TrackBack URL for this entry:
http://www.computerweekly.com/cgi-bin/mt/mt-tb.cgi/49164

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)

Search


About

This page contains a single entry from the blog posted on March 24, 2009 11:15 AM.

The previous post in this blog was Security, scale and functionality - Part 3: Functionality.

The next post in this blog is GhostNet.

Many more can be found on the main index page or by looking through the archives.

Subscribe to this blog's feed
[What is this?]