Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Is Intel a safe bet for Apple security?
CNET News.Com ^ | 6/7/2005 | By Joris Evers

Posted on 06/08/2005 5:33:33 PM PDT by Swordmaker

Apple Computer's switch to Intel chips is no reason to raise the security alarm, experts say.

Yes, Macs will have the same hardware at their core as Windows PCs, but it is the operating system, not the hardware, that has made those Microsoft-based computers vulnerable to attacks, analysts and security researchers said.

"Mac OS has generally a better track record and reputation than Windows for security. I don't think taking Mac OS to Intel silicon would change the robustness of the operating system," said Dana Gardner, a senior analyst at research firm the Yankee Group.

The Mac OS enjoys a reputation as a secure operating system, with far fewer flaws than Windows. So far, it has largely been immune to the worms and viruses that have hit Microsoft-based systems. That is unlikely to change with the shift announced Monday from niche Power PC processors to mainstream Intel hardware.

Theoretically, though, it is possible that security flaws in lower-level system software could be used to attack both Windows and Mac computers, several security experts said. However, such attacks, for example on the system BIOS, are rare. Furthermore, it is not known if Apple will use the same low-level software common in Windows PCs, the experts said.

Another unknown is to what level Intel will customize its chip products for Apple.

"The fact that Macs are running the same processors as Windows PCs may mean that some code can be executed on both platforms," said Russ Cooper, a senior scientist at security provider Cybertrust of Herndon, Va. "But I don't think that virus writers are writing at that level, so it is probably not going to have any security implications."

Soft target

Most attacks target operating system, application and networking vulnerabilities, said Chris Christiansen, an analyst at IDC. "Threats are not written to the silicon, because it is too hard," he said.

BIOS-level exploits exist, but those are rare and well-defended against, Christiansen said. BIOS, or basic input/output system, is software that links the hardware to the operating system.

BIOS attacks are one example of possible security problems. Intel chips could also expose Macs to such issues as the hyperthreading flaw. This recently reported vulnerability in the Intel processor technology could allow a local hacker to steal sensitive information held on servers configured to allow multiple users to log in simultaneously, according to the security researcher who discovered the flaw.

"Theoretically, it is possible," said IDC's Christiansen. "But I think it is an awfully skinny theory."

Still, the move to Intel could make it easier for hackers to develop an exploit to target both systems, said Gerhard Eschelbeck, chief technology officer at Qualys, a Redwood Shores, Calif.-based vulnerability management company.

Ken Dunham, director of malicious code at iDefense, a security intelligence company in Reston, Va., disagreed. "Because of a chip change, there does not appear to be any significant malicious code implications for the operating system," he said.

While the hardware shift itself may not lead to major security issues, its side effects raise some concerns. Apple's products on Intel may become cheaper and more popular, which would make the Mac OS a bigger target, experts said.

Also, Mac applications have to be rewritten to run on the new hardware. Software makers will have to watch out for sloppy coding, said Charles Kolodgy, an analyst at IDC.

"With many developers making changes to their programs en masse, there is much more opportunity for vulnerabilities to be created--not intentionally, but accidentally," he said.

On the other hand, the switch to Intel could also enhance Mac security, if Apple decides to support hardware security features typically found in Windows PCs, Kolodgy said. Intel hardware offers security such as no-execute protection to prevent buffer overflow attacks.

In addition, a secondary, security-oriented chip, known as a trusted platform module, is becoming common in Windows PCs as a means for securing encryption keys. Apple has yet to incorporate such a chip into the Mac.

"It could improve Apple security," Kolodgy said. "Previously, Apple hasn't been interested in hardware security."


TOPICS: Extended News; News/Current Events
KEYWORDS: apple; intel; osx; security
Navigation: use the links below to view more comments.
first 1-2021-33 next last

1 posted on 06/08/2005 5:33:33 PM PDT by Swordmaker
[ Post Reply | Private Reply | View Replies]

To: Bush2000; antiRepublicrat; Action-America; eno_; Glenn; bentfeather; BigFinn; byset; Bubba; ...
Apple with Intel security questions PING!

If you want on or off the Mac Ping List, Freepmail me.

2 posted on 06/08/2005 5:35:18 PM PDT by Swordmaker (tagline now open, please ring bell.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Swordmaker
Oh, come on. All Apple is doing is changing processors, and suddenly the peanut gallery has lost 30 IQ. Changing to x86 won't affect security in any way.
3 posted on 06/08/2005 5:38:14 PM PDT by Terpfen (New Democrat Party motto: les enfant terribles)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Weirdad; enotheisen; Quix; agitator; Ed_in_NJ; 1234; American_Centurion; Centurion2000; dakine; ...
Paging the InfoSec pinglist...
Let me know if you want to be 1 or 0. (That's ON or OFF, for those who are not binary-compliant)




A well written, factual article... a rarity on the topic of IT Security.
4 posted on 06/08/2005 5:43:50 PM PDT by adam_az (It's the border, stupid!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Terpfen
Oh, come on. All Apple is doing is changing processors, and suddenly the peanut gallery has lost 30 IQ. Changing to x86 won't affect security in any way.

I agree... the Intel processor is not inherently unsecure... Any processor must be fed the code by a operating system... and it is the OS that allows or does not allow malicious code to get to the processor.

5 posted on 06/08/2005 5:50:54 PM PDT by Swordmaker (tagline now open, please ring bell.)
[ Post Reply | Private Reply | To 3 | View Replies]

To: Terpfen
All Apple is doing is changing processors, and suddenly the peanut gallery has lost 30 IQ. Changing to x86 won't affect security in any way.

I think generally you are correct. There have been some hardware tweaks for some security issues like buffer overflows that offset addresses to prevent function pointers from being substituted for the next instruction after a buffer overflow, etc. but the vast majority of the changes are software.

If you can get a buffer overflow to happen on an Intel system (and I know a couple Apple has had), you can cause some damage.
6 posted on 06/08/2005 6:06:10 PM PDT by microgood
[ Post Reply | Private Reply | To 3 | View Replies]

To: Swordmaker
Yes, Macs will have the same hardware at their core as Windows PCs, but it is the operating system, not the hardware, that has made those Microsoft-based computers vulnerable to attacks, analysts and security researchers said.

Give these researchers top honors in the skill of stating the glaringly obvious!


7 posted on 06/08/2005 6:09:05 PM PDT by rdb3 (Say it loud! I'm white and I'm proud! Don't look at me like that. Ask Howard Dean.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Swordmaker

Anyone asking the question in the title knows little of computer security.


8 posted on 06/08/2005 6:09:52 PM PDT by shellshocked (They're undocumented Border Patrol agents, not vigilantes.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: microgood

My thinking exactly. And Intel and AMD both are working on preventing buffer overflows via hardware. I believe it's called zero-bit technology.


9 posted on 06/08/2005 6:17:33 PM PDT by Terpfen (New Democrat Party motto: les enfant terribles)
[ Post Reply | Private Reply | To 6 | View Replies]

To: Swordmaker
"Threats are not written to the silicon, because it is too hard,"

WHAT !?!?!

10 posted on 06/08/2005 6:23:16 PM PDT by Mannaggia l'America
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mannaggia l'America
"Math is Hard"
    talking Barbie
11 posted on 06/08/2005 7:27:47 PM PDT by 6SJ7
[ Post Reply | Private Reply | To 10 | View Replies]

To: Swordmaker

I'm curious why Apple would go with a 32 bit company instead of AMD. Maybe Intel will have a 64 bit chip in production in two years.

64 bit chips have built in protection against the commonly used buffer overrun exploit.


12 posted on 06/08/2005 7:30:58 PM PDT by js1138 (e unum pluribus)
[ Post Reply | Private Reply | To 1 | View Replies]

To: js1138

Whatchu Talking 'Bout Willis?


13 posted on 06/08/2005 7:35:56 PM PDT by VeniVidiVici (In God We Trust. All Others We Monitor.)
[ Post Reply | Private Reply | To 12 | View Replies]

To: Terpfen
My thinking exactly. And Intel and AMD both are working on preventing buffer overflows via hardware.

It's a done deal with AMD64. The OS needs to work with the chip, but if the OS is aware of the security fix it covers all apps, even poorly written ones. XP with SP2 works with AMD64.

AMD64 is getting cheap. I just built a business rig with 512 megs of memory and a WD Raptor drive. It came in under $600 including Windows. Boots XP in about 10 seconds.

14 posted on 06/08/2005 8:24:29 PM PDT by js1138 (e unum pluribus)
[ Post Reply | Private Reply | To 9 | View Replies]

To: js1138

Not a bad setup. I'm becoming disenchanted with desktops and towers, though. They sound like vacuums, they take up an inordinate amount of space, and laptops/HTPCs are increasingly offering more than the standard desktop.


15 posted on 06/08/2005 9:03:39 PM PDT by Terpfen (New Democrat Party motto: les enfant terribles)
[ Post Reply | Private Reply | To 14 | View Replies]

To: Swordmaker

Apple may apply some of its R&D to helping Intel improve their chips. Apple's RISC experience may be handy. But these improvements will be applicable to all of Intel's chips, if any such improvements come about.


16 posted on 06/08/2005 11:52:13 PM PDT by coconutt2000 (NO MORE PEACE FOR OIL!!! DOWN WITH TYRANTS, TERRORISTS, AND TIMIDCRATS!!!! (3-T's For World Peace))
[ Post Reply | Private Reply | To 1 | View Replies]

To: Swordmaker
In addition, a secondary, security-oriented chip, known as a trusted platform module, is becoming common in Windows PCs as a means for securing encryption keys. Apple has yet to incorporate such a chip into the Mac.

"It could improve Apple security," Kolodgy said. "Previously, Apple hasn't been interested in hardware security."

Ahem, these "trusted" modules have nothing to do with the security of the system for the user. They are anti piracy measures.

17 posted on 06/08/2005 11:55:51 PM PDT by The Red Zone (Florida, the sun-shame state, and Illinois the chicken injun.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Terpfen

Laptops are slow....


18 posted on 06/08/2005 11:58:27 PM PDT by Ernest_at_the_Beach (This tagline no longer operative....floated away in the flood of 2005 ,)
[ Post Reply | Private Reply | To 15 | View Replies]

To: Ernest_at_the_Beach

I'm typing this on a 1.6Ghz Pentium M with 1GB DDR2. This thing is every bit as responsive and quick as my 2.8Ghz P4 desktop. The only bottlenecks are the 5400RPM hard drive and the ATI X300 video chip, but I can still play games pretty decently. I just finished a replay of Half-life 2, in fact.

Laptops are plenty fast, and growing faster. Q1 2006 will see the launch of a dual-core Pentium M, which actually looks to be a proper dual-core solution (as opposed to Intel's halfassed P4 dual-core.) Seagate is getting ready to launch 7200RPM laptop drives, and the GeForce6800 is already available in some Dell laptops.

Slow nothing.


19 posted on 06/09/2005 12:39:19 AM PDT by Terpfen (New Democrat Party motto: les enfant terribles)
[ Post Reply | Private Reply | To 18 | View Replies]

To: Terpfen

Take a look at the Aspire cases, or the Shuttles. That's what I like to build.


20 posted on 06/09/2005 5:25:16 AM PDT by js1138 (e unum pluribus)
[ Post Reply | Private Reply | To 15 | View Replies]


Navigation: use the links below to view more comments.
first 1-2021-33 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson