Home » Data Protection » Application Security

Safe Storage, Mac Style

Disk-level encryption provides a safety net without a hassle

I know that most CSO readers live in a world where Microsoft Windows runs on laptops, desktops and most of the servers. I live in a different world. On my desktop I run Windows because it has the best support for scanners, OCR and Quicken. But my servers run FreeBSD and Linux. My phone runs PalmOS. And my laptop runs Apple's MacOS—with Microsoft Windows occasionally running as a guest operating system inside in a virtual machine.

I am by no means a Macintosh bigot: I bought my first Mac in 1984 but sold it in 1985, regarding the machine as little more than a toy. I tried the Mac again for a few years in the 1990s but gave up because it crashed too much. I returned to Apple when Apple bought NeXT Computer and migrated to Unix—but only because I had written a book about NeXT and wanted to "port" it to MacOS.

In recent years, however, I've had a compelling reason to avoid Windows and use the Mac: security.

Apple has taken its legendary attention to detail and usability and applied it to eliminating some of the most important security threats facing computer users today. The reason that I use an Apple laptop even though there are other models that are lighter and faster is because of the added security that MacOS offers to mobile users. It's easier to use and more secure than any solution I could buy or build using Windows or Unix without purchasing extra software and doing a lot of customization.

This column won't convince any CSO to throw away her organization's Windows-based computers and move to the Mac. But by analyzing some of the significant security features that Apple has added to its operating system in recent years, I'll aim to show you why I've decided to use MacOS on my laptop and give you a list of features that you should be demanding from your vendor, whoever that may be.

Passwords Versus Encryption

Laptops, USB memory sticks and external hard drives have become a security headache for many organizations. As a result of mandatory notification laws, a single stolen device can force your organization to send embarrassing and potentially costly disclosure letters to thousands or even millions of people. You may not even be aware that you're at risk: Employees or consultants may be taking large quantities of personal data out of your company on laptops without even telling you.