Talk:Security

From OLPC
Revision as of 18:29, 25 July 2006 by 212.201.55.6 (talk) (encryption)
Jump to navigation Jump to search

IMHO, the endusers should have to spend zero time worrying about security. The laptops have to be as trustworthy as a book.

--BobBagwill 09:20, 13 April 2006 (EDT)

Just as you have to keep a book in your physical possession to guarantee it does not get written on, soiled, or destroyed, physical possession of the laptop will always allow malicious individuals to defeat its security. So trustworthy as a book and secure as a book are excellent goal statements but they do not equate to zero time worrying about security.

--The Guy who used Negroponte's Q&A session to push Domestic Adoption

I disagree. If the OS is digitally signed, you can guarantee it hasn't been tampered with. If the laptop will only download/store/boot/execute signed images, updates will be trustworthy too. That leaves user data. Assuming the only authentication will be a password or challenge/response, the laptop will be vulnerable to shoulder-surfing. If the laptops backed up to a central server, you could always restore to a previous state.

--BobBagwill

The more networked a computer gets, the more chances exist that a remote exploit will appear. Please make a list on the Wiki of any network-accessible services the OLPC will have, as they need to be scrutinised.

--SimosX


Some security features that commercial laptops lack that I would like are:

  1. a reinforced grommet through the laptop in the center hinge area that would let you secure it to a flat surface
  2. a reinforced eyelet for a cable lock
  3. a standard threaded tripod socket

That would let you

  • attach it to a wall
  • easily secure them for a lab or cafe
  • mount them on a swing arm or tilted table

-- BobBagwill 20:54, 5 June 2006 (EDT)

encryption

Do you plan to encrypt the whole memory or does this cost too much power?