I’m more secure on a Mac than I was on Windows XP. There, I’ve said it. I am. But why? I’ll explain.

For starters, please note that I didn’t say that OS X (Tiger) is more secure than Windows (XP, Vista, or otherwise). No, that’s not at all what I said. I said I’m more secure on a Mac, and I truly believe it.

Recent Alignment Articles
Tracking The Malware Battle


Web 2.0 Security: Application Scanners

Spam Bust: The Lessons of Yesmail

Pirated Vista, Office 2007 Already on The 'Net

FREE IT Management Newsletters

But, not being one to accept such claims from others without justification, I’d like to elaborate here why I believe this so passionately. The answers aren’t necessarily as simple as you might think. Here’s a brief rundown of the issues that I believe are most pertinent to my perception of security.

Familiarity with security mechanisms One of the things that lured me over to OS X from Windows XP and Linux (but that’s another topic for discussion) is that under OS X’s pretty GUI lies BSD UNIX, for all intents and purposes. I’ve been using UNIX systems since the early 1980s and I’m very comfortable there, right down to understanding the underlying security mechanisms quite thoroughly.

By and large, OS X conforms to these established conventions. Familiar (to me) commands like chown, chmod, and such, work just as they do on UNIX systems.

During much of that time, Windows’ predecessors didn’t even have a security model (apart from read-only attributes on files). Things have improved in Windows, but the interface has always been awkward to me. I grew to understand and appreciate having an administrative user that could install programs and run the system, and a normal class of users who could run programs, for example.

Qualitative score: OS X gets a B+ while Windows gets a C-.

Separation of data and executables In my familiar UNIX land, all programs are stored in areas of the file system that were outside of the control of users. Specifically, directories including /bin, /usr/bin, /usr/sbin, /usr/local/bin, and so on are where programs go. Users, on the other hand, login to their own directories, such as /home. Among other things, this makes various administrative tasks like backing up user data, system data, etc., well organized and easy to manage on UNIX systems.

Apple’s OS X extends the UNIX conventions by putting additional (mostly desktop) executables in the /Applications directory. All user data, however, resides in the /Users directory tree.

Several generations of Windows, on the other hand, have seen programs installing configuration data (e.g., .INI files) in /Windows or its equivalent. Program files have been stored in various places over time as well. Nowadays, many programs install in the /Program Files folder and user data is generally in the /Documents and Settings folder, but that’s not always adhered to.

Qualitative score: OS X gets a B+ while Windows gets a D-.