InfoWorld - Security Adviser: Don't fall for the monoculture myth

/Home/Internet Security: Blogs/Internet Security: InfoWorld blog/InfoWorld: Security Adviser 2009

The idea that there's more security in using less popular software is not only false, but a smokescreen to solving the real security issues

By Roger A. Grimes
April 24, 2009

Here we go again: another expert recommending that people stop using a popular piece of software because it has too many vulnerabilities. In this case, I'm talking about F-Secure's recommendation to abandon Adobe's Acrobat Reader in favor of other PDF rendering programs, like Fox-It or any of the free alternatives available.

You'll often read similar recommendations to dump Microsoft's Internet Explorer (I work full-time for Microsoft) and use any other browser instead. To completely protect yourself, they'll advise moving off of Microsoft Windows all together.

The idea is that protection can be gained by moving to a more secure product or that it's just inherently safer to use a less popular product because it is less likely to be attacked. Now, the former argument I can buy. If one product has weaker security than another product, who can blame you for switching? Of course, that argument is more complex than it first appears.

Click the URL above to read the full article