|
|
|
|
|
|
by briansmith
6302 days ago
|
|
|
I think Chrome and IE are both on track to become proved-secure. I think they are both close to being able to use automatic tools to prove that malware cannot get out of the sandbox without an operating-system exploit. Microsoft seems to be working on a provably-secure micro-kernel for Windows. In a few years they will be able to legitamately claim that privilege escalation is literally impossible without the user's consent. That is such a big and expensive task that I'm not sure their mainstream competitors will be able to match that claim in any reasonable time frame (except maybe Symbian, because it already has a micro-kernel architecture). After that, security on Windows will be all about UI. How can we prevent programs from tricking the user into letting them do something bad. How can we prevent programs from doing bad things without the user knowing? How can the user be sure that a program will not violate his privacy? How can the user be sure that a program won't cause data loss? |
|
|
An easy way to do it: never delete anything. This isn't too different than my OS X setup at home with Time Machine. I have exceptions set up for things like my VirtualBox images and movies. A more advanced system that can keep deltas of binary data would be even better. A solution designed for the clueless end-user would have some sort of function that would automatically keep less frequent backups for larger files.
Run out of room? The salesperson talks you into a hard-drive upgrade. HP, Dell, and Apple would be happy about this!
More accurately, never completely delete anything. The system would always keep around at least one version of everything. Yes, this would mean that secure delete is impossible, but this sort of system is for the casual home user. If you need secure delete, use a different system. If you are doing esoteric things with lots of large files, use a different system.