Google’s ATAP team has announced Vault, a hardware-based, cross-platform microSD card based solution for encryption of data both at rest or in transit.
Google Vault MicroSD Hardware
ATAP is a Google unit that looks at Advanced Technologies and Products and among a number of their announcements on the Google IO stage in San Francisco was project Vault. With the help of former L0pht member .mudge ( Peiter Zatko) the team has developed a hardware encryption device that they think anyone, and any system can use. Starting with a developer kit and a business-focused customer based the team aims to solve the problem of encrypting communications by having a simple hardware unit (inside the MicroSD card) and a simple file system based input and output mechanism. The open-source developer board was demonstrated on stage.
It looks simple, and that’s good because people and business don’t use security methods properly if they are too complex and time-consuming but inside there’s a “suite of cryptographic services” along with an NFC chip, a hardware random number generator and 4 GB of isolated sealed storage. “Two Vault users can communicate end-to-end without exposing any cryptographicly sensitive data to the host systems” says Zatko. Vault is operating system agnostic.
You’ll obviously need to trust Google though but with the development kit being fully open-source, including the CPU and the software this might become the best solution, even if you don’t trust Google. Don’t expect peer reviews to be done in a week though!
We haven’t found a Google page for the ATAP Vault project yet but the ATAP page (which redirects to project Tango) is here.
Similar: This isn’t the first MicroSD-based security solution on the market. Blackberry’s Secusmart unit has a similar solution for governments.
I wrote last Thursday about how my old technology would be useful while I was away on a weekender but something happened during my weekend in Holland that puts another angle on the tactic. Perhaps an expensive smartphone is worth taking with you because we had over $3000 of smartphones and laptops stolen from a holiday home at the weekend and because one of the stolen items had GPS tracking enabled we were able, with the help of local police, to find the equipment and thief in under 2 hours.
My first mention of security on this site was when I did a mini review of the Pepperpad 3 in October 2006.
…I was able to check for software listening on IP ports. It all looks pretty clean and with the automatic updates, there should be no need to worry too much about security. Low maintenance is always a good thing.
In 2020, Chromebooks, also based on the Linux kernel, have hit the mark and are now one of the most secure laptop types you can buy.
As part of my continuing research into the real-world differences between Windows laptops and Chromebooks I’ve taken a look at security and compared a set of Windows security steps with those required on a Chromebook. Chromebook wins!
Security is, in my opinion, one of the biggest advantages of Chrome OS over a Windows and even if you’re worried about Google, the guest mode allows a tracking-free secure experience. Of a list of 13 Windows security and privacy checks the Chromebook requires just 7. Let’s take a closer look.
I was going to present this at BarCamp Bonn this weekend (auf Deutsch sogar!) but as I’m going to be flying to Mobile World Congress now I won’t be able to attend. I thought I’d publish it anyway, along with some BarCamp Bonn links to help the cause. This check-list applies to anyone using a Windows PC (but please don’t use Windows XP – it’s past its use-by date!) and some of the tips are relevant if you’re using other operating systems. The list is focused on helping you improve security and privacy when connected to public WiFi (WLAN) hotspots where the dangers are generally the highest. Think about this list when you connect to the WLAN at #bcbn15.
I’ve also published a variation of this list on my main website, UMPCPortal.com where it has a slightly different audience. For you though, my Barcamp Bonn friends I have a few other thoughts as I know there will be people at that event that have few Windows administration skills and even less desire to be messing around with a PC. If you really don’t want to have to mess-around with Windows, think about a Chromebook.
Für die die kein bock auf Windows Administration haben werde ich einfach sagen, bitte ein Chromebook! Warum? Weil wenn man ein Chromebook nutzt reduziert sich diese liste von 14 punkte auf nur 5 punkte. Ein Chromebook, auf Chrome OS basiert, ist ein super, einfachen weg ein sicheres und privates Internet Erlebnis zu haben. Preiswert ist es auch!
I’m preparing to go to Mobile World Congress where one of my worries will be security and privacy. To that end I’ve hardened my Windows build and written it up below as a checklist of tasks that I urge you to look at and consider, especially if you’re connecting to unknown hotspots.
The checklist has evolved from work I did training journalists in Ukraine, work I’ve done here on Windows 8 tablet security and work I’ve done on Clean Computing with Chromebooks which, interestingly, would have a checklist just half as long as this. Points 1-7 don’t apply to a Chromebook. Unfortunately I’ll be needing video editing and gallery management tools in Barcelona so I can’t use a Chromebook as my main PC there.
With an annual budget of $100-$200, journalists in Ukraine have a problem with their computing equipment. Each journalist needs a mobile phone and, if they want to work away from the office PC, a laptop. Financial restrictions mean that little attention is given to licensing, security and privacy or quality. Privacy and security risks are huge but some journalists have no perception of this at all. Fortunately it doesn’t take much to improve the level of online literacy with some basic training and organisations like the Deutsche Welle Akademie are able to provide it. I joined DW in Ukraine for two weeks in November to give some training and I learned that the new range of low-cost, lightweight Windows laptops are going to help these journalists a lot, despite Chromebooks being better for privacy and security in some situations.
Your privacy is important. While you might be happy with people watching you doing ‘acceptable’ things, what if you change in the future? What if the definition of ‘acceptable’ changes and you don’t agree? What if you live in a country where freedom of speech is restricted? Chromebooks can’t hide you on the internet but they can perform as a clean client from which you can work and walk away knowing that there’s no locally-stored record of your activity.