SUSE Linux Enterprise Desktop delivers a desktop computing platform with proven security. Beginning with its heritage in the UNIX world, and adding the strength and manageability of leading application security technology, SUSE Linux Enterprise Desktop delivers bullet-proof security and peace of mind.

So why is Windows inherently insecure? First, it's a monolithic operating system with services such as Internet Explorer tightly integrated into the operating system. All it takes is a single security vulnerability to expose the entire Windows system to damage. Secondly, Windows traditionally created extra security vulnerabilities by establishing user accounts with "administrator" privileges by default. This allows any malware program to wreak havoc by installing new applications and creating, changing or deleting virtually any file on the machine.

When you think of Windows security, lots of things come to mind: viruses, malware, spyware, the blue screen of death, and long delays in getting the latest patches from Microsoft. Security flaws can cost you hundreds of millions of dollars per year as you fix your Windows system and install new service packs. This leads to lost time, productivity and money.

SUSE Linux Enterprise Strengthens Security

SUSE Linux Enterprise Desktop delivers bullet-proof security in two key ways. First, unlike Windows, Linux has a much more modular architecture. Different elements of the operating system are loosely coupled together, making it much more difficult for a security flaw from one part of the system to impact another part of the system.

In addition, SUSE Linux Enterprise does not provide administrator or unlimited privileges by default. This ensures that an application can only do what it is "supposed" to do. For instance, when you run an application such as a word processor, that word processor runs with your restricted privileges. It can only write to your own home directory. It cannot write to a system file or even to another user's directory unless your IT administrator explicitly gives you permission to do so. This limits widespread damage to the system.

Second, SUSE Linux Enterprise also includes a powerful suite of built-in security tools. It includes AppArmor, an application-level security framework that provides mandatory access control for programs. AppArmor allows you to specify the files that a program may access and the operations that it may perform on the files. AppArmor denies or logs any other behavior beyond that scope. This protects your desktop against the exploitation of software flaws. It includes everything you need to contain programs and thwart attempted exploits, including zero-day attacks.

AppArmor also includes a "learning mode" that automates the development of application-specific security so that no new expertise is required. Finally, it contains integrated Virtual Private Networking (VPN), a firewall, antivirus tools and certificate management to bring further peace of mind.

Because Linux is inherently more secure than Windows, and thanks to advanced security technology such as AppArmor, SUSE Linux Enterprise Desktop offers the most secure desktop computing platform today.

US-CERT Vulnerability Database