The need to license and restrict the users of general purpose computers
Yvo Desmedt - UWisc-Milwaukee
Oct 24, 1997
AbstractIn the last years more research has been done on computer and network security. However, for different reasons, security measures are not widely implemented. Making matters worse, todays computers organize the distribution of life supporting resources such as water, electricity and food. Such computers are often connected to a network. This is now called the Critical Information Infrastructure. Those managing these computers often have no clue of the potential danger of installing insecure software. More research on the topic alone is insufficient to prevent a potential disaster. Several other issues need to be addressed, as we will discuss.
We discuss several approaches to deal with these issues. First, software developers should be forced to take responsibility for faults in their software. Secondly, we will argue that computer users need a license. Those who use computers for their personal reasons should have no difficulty in getting a license that clearly states for what applications it can and cannot be used. Those who want a license to manage a computer in a more critical application should have to take a test. Thirdly and more controversially, we will argue that the concept of general computer is inherently a bad idea from a security viewpoint. We propose that it should be made very hard to install whatever software on computers that run critical applications.
The views, opinions and assumptions expressed in these videos are those of the presenter and do not necessarily reflect the official policy or position of CERIAS or Purdue University. All content included in these videos, are the property of Purdue University, the presenter and/or the presenter’s organization, and protected by U.S. and international copyright laws. The collection, arrangement and assembly of all content in these videos and on the hosting website exclusive property of Purdue University. You may not copy, reproduce, distribute, publish, display, perform, modify, create derivative works, transmit, or in any other way exploit any part of copyrighted material without permission from CERIAS, Purdue University.