Apple flags OS X Leopard security features

25 October 2007 10:02 AM

Tags: leopard, osx, apple, security, operating system, encryption, apple mac

In advance of Friday's general release of Apple Mac OS X Leopard, Apple has posted details of 11 new security features in the new operating system intended to make Leopard more secure than Tiger.

Library randomisation: The technology behind this, address space layout randomisation (ASLR), randomly arranges the positions of key data areas. This prevents malware authors from predicting the targeted memory addresses for buffer overflows and malware exploitation. Windows Vista includes ASLR.

Sandboxing: Sandboxing allows applets to run without interfering with the overall system, then terminate when the application shuts down. Apple says "many Leopard applications--such as Bonjour, Quick Look, and the Spotlight indexer--are sandboxed so hackers can't exploit them." Missing from the list, however, is the Apple Internet browser, Safari.

Tagging downloads: Before Leopard executes a download, it will ask for your consent first by telling you when a file was downloaded, what application was used to download it, and, if applicable, what URL it came from.

Application-based firewall: This will allow users to specify the behavior of individual applications.

Stronger encryption for Disk images: With 256-bit AES encryption, Disk Utility will provide stronger encryption for Mac OS disk images.

Sharing and collaboration configuration: Leopard will make it easier to share and control who has access to your folders over a network.

Signed applications: All applications designed for Leopard will be signed by either Apple or third-party developers.

Enhanced VPN client compatibility: Leopard will support Cisco Group Filtering as well as DHCP over PPP.

Multiple user certificates: Leopard provides a digital certificate for encrypting e-mail messages.

Enhanced smart card capabilities: According to Apple, "now you can use a smart card to unlock FileVault volumes and your keychain, and configure your Mac to lock the screen when a smart card is removed."

Windows SMB packet signing: According to Apple, "enjoy improved compatibility and security with Windows-based servers."

Talkback (0)
Print
E-mail
Share
- del.icio.us
- Digg
- Reddit
- Slashdot
- StumbleUpon

Talkback 0 comments

Be the first to comment on this article!

Latest Videos

Play now

Conroy ducks, Ballmer evades and Android Fails -- Club Builder
Club Builder this week takes a long look at Senator Conroy's recent attempt to explain his Great Firewall of A… Watch it now
The future of... Paper
The future of... Mobile device chargers
The future of... Ink
More videos »

Blogs

Is green IT a marketing fad?
It seems that green IT has dropped off the radar, with other technology issues moving to the fore. But was green IT ever a real technology movement, or was it just a marketing fad?
Gutless studios have the wrong target
I have one word for the Australian Federation Against Copyright Theft (AFACT). Gutless.
NBN needs workers on board
Without consensus on labour issues, the eventual winner of the NBN may end up as little more than a lame duck and a cashed-up symbol of the conflict between the desire for progress and the lack of mechanisms to deliver it.
More blogs »

Hot Spot - What's Important

Footy Club switches to Single Business Communications Solution

Connect growing business demands using Next Dimension Working™

Click here to find out more about Telstra's single solution vendor capabilities

Find out how to combine network connectivity with mobile broadband and IP telephony

Reader Services

Essentials

Printer Superguide
Looking to buy a printer? Our superguide rates the latest printers and shines a light into the industry.
Broadband speedtest
How fast is your Internet connection? Calculate the speed here.
'At the Whiteboard' Video Series
Click here to learn more about Microsoft Windows Server 2008 and Hyper-V technology.

CXO Unplugged

Video 1: Maintaining the IT health of your Mobile Workers

Apple flags OS X Leopard security features