Similar in spirit?
Posted Oct 5, 2006 7:44 UTC (Thu) by ortalo
Parent article: Similar in spirit?
There is another problem I foresee with locked down embedded systems. Their producers may make false claims about their device (especially in the security area) while simultaneously denying us the ability to make counter claims.
This is not very annoying in the DRM area. We don't really bother if our media player, our TV box or our children play station has some vulnerability that may defeat the device security and that the vendor does not want to disclose for mere marketing reasons.
But there are other areas where we do care about this: who really knows about the (internal) security of smart cards, of mobile phones, of voting machines, of public institutions databases, of embeded devices driving our car's braking system, or our plane network system, even today? Don't you think believing vendors security marketing without them delivering any factual guarantees (not to speak about the original source code) is playing Candide?
And whatabout tomorrow when all these systems will become even more open and more generalized?
The same vendors or institutions that try to hide their own vulnerabilities may be those who will adopt Linux under the cover tomorrow. I am tempted, like the FSF probably, to remind them that this implies more than just swapping their actual (possibly deficient) software platform.
to post comments)