What makes Apple’s Mac OSX more secure than Microsoft Windows?
According to a pair of security researchers, plenty of factors help Mac security. Among them are technological factors like the kernel that Mac OSX uses. Plus, there advantage of lower market share than Windows, which still makes it a lower-profile target.
During a Black Hat Webcast Thursday, experts laid out the top trends in security, including how security researchers began to focus on Mac security more closely in 2008.
“One of Apple’s best security features is actually their market penetration,” Ioactive security researcher Tiller Beauchamp said. “If you look at the desktop market they’ve got 9 percent market penetration. That makes OSX from a security perspective kind of a small target.”
After all, Beauchamp added, malware writers want the biggest bang for their buck. This means they’re more likely to invest their time in something that will recruit the most number of nodes for a botnet (define). For now, the most nodes remain on on Windows systems.
Security researcher Jesse D’Aguanno with Praetorian Global agreed with Beauchamp that both the perceived security and the market penetration of OSX are great strengths for Apple. Though in his view, that could change over time.
“The perceived security of OSX has always been just that,” D’Aguanno argued. “There have always been issues with just as many issues with the OSX operating system as with other operating system. But it is perceived to be more secure and not as well targeted.”
D’Aguanno thinks that if OSX were to gain more market share, it could be followed by a widespread impacting the OSX.
“There was a time with Windows when personal firewalls were not common and there were a lot more system directly facing the Internet so it was really prime time for worms,” Beauchamp said.
Plus, most systems sit behind NAT (define) as well as a firewall. Those technologies as well as the continuing efforts of operating system vendors in general have limited the risk in some ways for the desktop. That said, Beauchamp sees a rich world of Web-based vulnerabilities.
“So if there is going to be a worm I think it’s going to be a worm like a MySpace worm that exploits client side software through a large social network,” Beauchamp said.
This article was first published on InternetNews.com.