Security Basics mailing list archives
Re: Thin-clients: THE Solution to the Security problem
From: "Topi Ylinen" <topi.ylinen () hushmail com>
Date: Mon, 5 Sep 2005 05:25:11 -0700
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
THE solution? No, it's not always applicable. Is it A solution? Certainly
That is the gist of the issue. How to permanently eliminate attack vectors that target your workstations -> get rid of workstations. I guess you could call that a solution. 'A solution' to 'a problem'. Most real-life security issues fall outside the scope of this 'solution'. Thin clients will give little or no increased security against social engineering, dishonest employees, a fire in the server room, DDoS, and so on. In some ways, thin clients could be even more vulnerable: for example, an unavailable server could prevent *all* work, while your normal desktop PC could allow you to continue working locally even when the LAN or a server is down. Not to mention that in some organisations, thin clients could be technically infeasible. There is no single security solution that automatically fits all organisations. You need to do a proper organisation-specific risk analysis first -- only after that you can appraise the various countermeasures and their impacts, and choose the ones that make sense in your organisation. (However, I do suspect that the original poster was deliberately exaggerating the usefulness of the 'solution' in order to provoke discussion.) -----BEGIN PGP SIGNATURE----- Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 2.4 wkYEARECAAYFAkMcORoACgkQiokir2ZPLvUg4ACfSFg3m8jxqCqK9fEO8qAOD7UOBNUA oJTYP7S9yf3joGN9laVISWhJoLks =RlXY -----END PGP SIGNATURE----- Concerned about your privacy? Follow this link to get secure FREE email: http://www.hushmail.com/?l=2 Free, ultra-private instant messaging with Hush Messenger http://www.hushmail.com/services-messenger?l=434 Promote security and make money with the Hushmail Affiliate Program: http://www.hushmail.com/about-affiliate?l=427
Current thread:
- RE: Thin-clients: THE Solution to the Security problem Bill Stout (Sep 01)
- Re: Thin-clients: THE Solution to the Security problem Saqib Ali (Sep 01)
- Re: Thin-clients: THE Solution to the Security problem Ansgar -59cobalt- Wiechers (Sep 06)
- <Possible follow-ups>
- Re: Thin-clients: THE Solution to the Security problem Dave Aronson (SecBasics) (Sep 01)
- Re: Thin-clients: THE Solution to the Security problem Topi Ylinen (Sep 06)