Why Palm needs to get serious about security

For several years, now, security experts have been talking about the threat posed by Palm OS malware and malicious hackers. And, really, it’s all been talk. There have been a few, not-very-successful trojans, and an exploit for Treos that would let someone retrieve a few bits of info even if the Treo was locked. But that’s pretty much it.

Still, the security people have a point. The average Treo-toting businessperson uses their device as a way to carry around the documents,programs, and media that they need to have handy. In other words, the really important stuff that they use a lot resides on their Treo. Of course, that would be a luscious target for crackers if they could get in. But, with no multitasking or services, the Palm OS is probably one of the most secure operating systems developed.

Of course, that’s all going to change when Palm OS 2 comes out.

Okay, before everyone jumps on me yelling “But Linux IS secure!”, let me say:I like Linux. It’s definatley secure. But a basic truth is that the more complex you make a computer system, the more bugs you get. And the more bugs you get, the easier it is to break into a system. And let’s not forget multitasking, the lack of which has been the primary factor protecting the Palm OS from a storm of viruses and other malware.

So, how do you fix that? You focus on making a PDA, not a tiny computer that has 3000 ports wide open. At the same time though, you leave the door open for third party developers to design this sort of thing. In other words, you give your users a choice–the not-that-security-conscious business people can have a PDA, and PDA enthusiasts(who are probably more security conscious) can mod the thing to their heart’s content.

Related posts:

1. Foundations of Security – the review
2. Palm webOS has security holes
3. OpenOffice-the first concept virus emerges
4. An insight into the mobile malware scene
5. The latest bluetooth security leaks/problems/hacking tricks