Computer malware is a big problem to society. When this is discussed in relation to children and the Internet (or politicians or parents), the advice has always been: updates, AV software, and firewalls for the computer and rules, restrictions, and filters for the children. With a special emphasis on installing more software and more updating. Illustrations of this attitude can be found in:<\/p>\n
But, is user education working<\/a>? Obviously, primary school children (and older) cannot be made responsible for installing and managing security updates, AV software, and firewalls. In this view, getting millions of children in developing countries on-line on laptops they have to use unsupervised at home seems to be nothing short of a crime against humanity. Yet, is it really impossible to create a computer environment that can not only be used safely by children, but also managed safely by children?<\/p>\n All these security advices are very sensible given the current ICT landscape. But, these advices can also be seen as blaming the victim<\/a> by the commercial software industry. This has been doubly insulting as most security problems, eg, the mere existence of computer viruses, is the result of the (very) bad coding practices and short sighted design decisions of commercial software companies. As a result, the complete AV industry catering to end-users is widely mistrusted<\/a>. Its very existence has been seen as a stopgap<\/a> for irresponsible coding<\/a> practices <\/p>\n So it was a pleasant surprise to see the OLPC security model, Bitfrost<\/a>.<\/p>\n Bitfrost was a design that started with a “the user cannot do wrong” approach to security. It showed how you could actually build a user-friendly computer that gave children full control over their laptop and, at the same time, made the laptop as secure as any security professional’s private laptop could ever be. Here is a summary of the principles and goals of the Bitfrost design from the wikipage.<\/p>\n Bitfrost Principles<\/b>:<\/p>\n Bitfrost Goals<\/b><\/p>\n These are all rather common sense starting points for any security system. And anyone who has experienced the trials and tribulations of securing an off-the-shelve computer system will immediately ask why this is not implemented in all computer systems sold? This is not the placed to go down that road. Suffice it to say that the Bitfrost principles and goals are all feasible with todays technology. <\/p>\n The implementation details might seem rather arcane, but they follow logically from the above lists. The Bitfrost document is a good read for anyone who wants to get a feeling how computer security should be done. Below there are some other links for further reading on this subject.<\/p>\n Further Reading:<\/b><\/p>\n Ivan Krsti\u0107 must be recommended for creating a design that includes most of the state-of-the-art security knowledge but is still feasible on a small device. The security models for Apple’s iPod and Google’s Android and Chrome OS follow a similar design (Ivan Krsti\u0107 currently works for Apple), but Bitfrost is even less forgiving to security breaches.<\/p>\n I think that Bitfrost will be one of the lasting legacies of the OLPC. As evidence that you can design a computer platform from the ground up that is both secure out of the box, and can be used and managed with ease, even by a child. There is no excuse anymore not to produce usable and secure software stacks.<\/p>\n","protected":false},"excerpt":{"rendered":" Computer malware is a big problem to society. When this is discussed in relation to children and the Internet (or politicians or parents), the advice has always been: updates, AV software, and firewalls for the computer and rules, restrictions, and filters for the children. With a special emphasis on installing more software and more updating.<\/p>\n\n
\n
\n