Security Matters. But Not To Apple.
I am tempted to buy the new MacBook Air. And install Windows 7 on it (of course). But there are two issues that keep me from finalizing the transaction.
First - there is no built-in WAN 3G option. Before owning the Nokia Booklet 3G, I had considered the 3G WAN not necessary. But later I started appreciating having the 3G modem built into the computer and being able to connect anytime and anywhere, without the need to plug any external "dongles" or booting up a personal WiFi cloud. It is just so difficult to understand the rationale behind the decision of not including the 3G option in the Air. The iPhone has it. The iPad has it. The Air does not. But in the end I decided I could live with it, returning to regular use of the Huawei 3G/WiFi router.
Second - the more important issue - is the lack of any hardware - based security. In the PC/Windows world the TPM or Trusted Platform Module has been available for years, tightening the platform security. I have been using TPM-based FDE self - encrypting hard drives for almost three years. A $10 option that lets me sleep well and never worry about my laptop being stolen (you can insure the hardware, but only good encryption keeps your data safe). It turns out hardware assisted security is not of a value to Apple. Or may be it is not enough magical nor revolutionary to bother... One day it will be. But at the moment there are not many options. Definitely one available is the Truecrypt, which seems to be the encryption system of choice. It is multiplatform (yes, can be used by Mac OS fans) and open - source. Being open sourced is a very important advantage for security systems, as this way they are independently assessed and there are no risks of some weak "security by obscurity" solutions to be found. Of course the lack of a TPM module is the weak link in my approach. But in the end I decided to consider it strong enough for my needs. Although just barely enough.
When I am done with getting rid of the MacOS and succeed installing Win 7 + Truecrypt, I will report back here If I still can sleep well... Today I consider this an experiment. It very well may be a failure...
First - there is no built-in WAN 3G option. Before owning the Nokia Booklet 3G, I had considered the 3G WAN not necessary. But later I started appreciating having the 3G modem built into the computer and being able to connect anytime and anywhere, without the need to plug any external "dongles" or booting up a personal WiFi cloud. It is just so difficult to understand the rationale behind the decision of not including the 3G option in the Air. The iPhone has it. The iPad has it. The Air does not. But in the end I decided I could live with it, returning to regular use of the Huawei 3G/WiFi router.
Second - the more important issue - is the lack of any hardware - based security. In the PC/Windows world the TPM or Trusted Platform Module has been available for years, tightening the platform security. I have been using TPM-based FDE self - encrypting hard drives for almost three years. A $10 option that lets me sleep well and never worry about my laptop being stolen (you can insure the hardware, but only good encryption keeps your data safe). It turns out hardware assisted security is not of a value to Apple. Or may be it is not enough magical nor revolutionary to bother... One day it will be. But at the moment there are not many options. Definitely one available is the Truecrypt, which seems to be the encryption system of choice. It is multiplatform (yes, can be used by Mac OS fans) and open - source. Being open sourced is a very important advantage for security systems, as this way they are independently assessed and there are no risks of some weak "security by obscurity" solutions to be found. Of course the lack of a TPM module is the weak link in my approach. But in the end I decided to consider it strong enough for my needs. Although just barely enough.
When I am done with getting rid of the MacOS and succeed installing Win 7 + Truecrypt, I will report back here If I still can sleep well... Today I consider this an experiment. It very well may be a failure...
Comments
Post a Comment