Quote:
Originally Posted by Prestidigitweeze
While Sregener's idea that virus protection is unnecessary with Macs seems wildly idealistic, I'm inclined to feel skeptical about your comment that Chrome has sufficient "defense built in from the ground up." If you have a moment, would you mind being a bit more specific?
|
This video from 2009 explains the principles:
The key protections after sandboxing are the separation of root code and user data, and the verified boot process, where the system code is checked each time it reboots, and if the checksums don't match a clean version is installed.
For an overview of the full range of features, see:
http://www.chromium.org/chromium-os/...urity-overview
More recently, Google have introduced Native Client apps, and these also have sandboxing and verification security:
https://developers.google.com/native...eventBreakouts
No system can ever be 100% safe, so Google have an aggressive policy of rewarding hackers to find exploits. This helps mitigate yet more of the risk, allowing Google to close down issues before they get exploited.
I think it would therefore be reasonable to say that the remaining risk is smaller than the risk you'd still have with a Windows machine that was fully protected by security software. This has been borne out in the various 'hackathons' and 'pwn2own' competitions where ChromeOS has not yet been fully breached while the other operating systems have fallen.
Graham