Slashdot Mirror

← Back to Stories (view on slashdot.org)

USB FlashDrives The New PC?

Posted by Zonk on from the for-limited-amounts-of-functionality dept.

olddotter writes "Yahoo has an article about how large capacity USB drives might be redefining the concept of the personal computer. The article is windows specific, but think knopix on a flash drive." From the article: "When you check into an average hotel room and find -- alongside the alarm clock, hair dryer and DVD player that once were bring-your-own items but now are as standard as the furniture -- a cheap PC for guests to plug into, as our truly personal computing environment travels with us."

4 of 305 comments (clear)

  1. Oh? by temojen · · Score: 5, Insightful

    I wouldn't trust a hotel (or net-cafe) computer with a USB stick with my private keys, certificates, or banking password. Even if you boot off your USB stick, how do you know it's not booting under Xen? I think it's more likely that the hotel computer has malware already. chambermaids are not sysadmins.

  2. Trust? by wtown · · Score: 5, Insightful

    Assuming that you are willing to trust that this machine isn't (either by design or by tampering) just grabbing and logging all of your data.

    Granted, I'm sure protection mechanisms would be built in to address this, but I think I'd still be a bit skeptical.

  3. Re:Or you can go one better... by temojen · · Score: 5, Insightful

    Or just bring your own Laptop. Putting your confidential information in someone else's computer is not safe. ever.

  4. USB would need a security layer. by G4from128k · · Score: 5, Insightful
    This sounds like a security/privacy nightmare. What stops the host PC from copying the drive or infecting it with malware from the prior user. Even if the USB drive uses an encrypted filesystem, once you type your password into the PC to access any file on the user data partition, you have no guarantee that it won't access every file on the drive. I can also see this giving corporate security managers the screaming heebie jeebies over the thought of returning road-warrior executives bringing infected USB drives inside the the corporate firewall (yes, you can scan for malware but you're still susceptible to zero-day attacks and delays in AV updates).

    Perhaps this would work if the client machine were truly memory-less (no HD, no NVRAM, no flash ROM, etc.). Then the machine could be a secure blank slate for whatever the USB user needed to do. Given the prevalence of flashable firmware on everything (and the need for persistent machine configuration data), I doubt this is very feasible.

    --
    Two wrongs don't make a right, but three lefts do.