路漫漫其修远兮分享 http://blog.sciencenet.cn/u/zhpd55 追求科学,勇于探索,苦海无涯,愿作小舟。


Windows 10免费升级安全吗?

已有 6965 次阅读 2015-8-5 09:09 |个人分类:新观察|系统分类:观点评述| 网络安全, windows, 个人隐私

 Windows 10免费升级安全吗?



根据美国网站通讯流量监测机构StatCounter的数据显示,在15亿桌面用户中,2015年8月3日已经有2.74%的用户已经装上了 Windows 10。而730Windows 10 在桌面系统中所占份额还仅为0.58%(但也超过了 Chrome 系统0.26%的份额)。其增长速度确实太过迅猛,看来微软 Win10 三年内装机量破10亿大关的目标也有望提前实现。

而在中国,Win10份额811.91%82上升到2.08%,3日上升到2.09%,超过Mac OS X的占有率1.37%Win8的占有率1.83%;当然Win7Win XP在中国用户中占有率超过80%,分别继续以57.88%22.43%主导市场份额。随着微软的继续推广,加之全新Windows 10 PC的上市,有报道称这一数据还将大幅上升。相比之前的Windows 8/8.1Win10显然已经赢在了起跑线上。实际情况并非如此乐观,Win10免费升级需要你以支付自己的隐私为代价,更多信息请浏览澳大利亚西澳大学软件实践中心主任(Director of UWA Centre for Software Practice at University of Western Australia)大卫·格兰斯(David Glance),201584在《对话》(The Conversation)网站发表的论文——David Glance. Windows 10 is not really free: you are paying for it with your privacyThe ConversationAugust 4, 2015 12.44pm AEST


Windows 10 is not really free: you are paying for it with your privacy

David Glance

The ConversationAugust 4, 2015 12.44pm AEST

Windows 10, it seems, is proving a hit with both the public and the technology press after its release last week. After two days, it had been installed on 67 million PCs. Of course, sceptics may argue that this may have simply been a reflection of how much people disliked Windows 8 and the fact that the upgrade was free.

For others, though, it is the very fact that the upgrade is free that has them concerned that Microsoft has adopted a new, “freemium” model for making money from its operating system.

They argue that, while Apple can make its upgrades free because it makes its money from the hardware it sells, Microsoft will have to find some way to make money from doing the same with its software. Given that there are only a few ways of doing this, it seems that Microsoft has taken a shotgun approach and adopted them all.

The question is whether it’s really ‘free’. Microsoft

Click to enlarge

Free upgrade

Chris Capossela, Microsoft’s Chief Marketing Officer, has declared that Microsoft’s strategy is to “acquire, engage, enlist and monetise”. In other words, get people using the platform and then sell them other things like apps from the Microsoft App Store.

The trouble is, that isn’t the only strategy that Microsoft is taking. Microsoft is employing a unique “advertising ID” that is assigned to a user when Windows 10 is installed. This is used to target personalised ads at the user.

These ads will show up whilst using the web, and even in games that have been downloaded from the Microsoft App Store. In fact, the game where this grabbed most attention was Microsoft’s Solitaire, where users are shown video ads unless they are prepared to pay a US$9.99 a year subscription fee.

The advertising ID, along with a range of information about the user, can be used to target ads. The information that Microsoft will use includes:

[…] current location, search query, or the content you are viewing. […] likely interests or other information that we learn about you over time using demographic data, search queries, interests and favorites, usage data, and location data.

It wasn’t long ago that Microsoft was attacking Google for similar features it now includes in Windows 10. Internet Archicve

Click to enlarge

It was not that long ago that Microsoft attacked Google for doing exactly this to its customers.

What Microsoft is prepared to share, though, doesn’t stop at the data it uses for advertising. Although it maintains that it won’t use personal communications, emails, photos, videos and files for advertising, it can and will share this information with third parties for a range of other reasons.

The most explicit of these reasons is sharing data in order to “comply with applicable law or respond to valid legal process, including from law enforcement or other government agencies”. In other words, if a government or security agency asks for it, Microsoft will hand it over.

Meaningful transparency

In June, Horacio Gutiérrez, Deputy General Counsel & Corporate Vice President of Legal and Corporate Affairs at Microsoft, made a commitment to “providing a singular, straightforward resource for understanding Microsoft’s commitments for protecting individual privacy with these services”.

On the Microsoft blog, he stated:

In a world of more personalized computing, customers need meaningful transparency and privacy protections. And those aren’t possible unless we get the basics right. For consumer services, that starts with clear terms and policies that both respect individual privacy and don’t require a law degree to read.

This sits in contrast to Microsoft’s privacy statement, which is a 38 page, 17,000 word document. This suggests that Microsoft really didn’t want to make the basic issues of its implementation absolutely clear to users.

Likewise, the settings that allow a user to control all aspects of privacy in Windows 10 itself are spread over 13 separate screens.

Also buried in the privacy statement is the types of data Cortana – Microsoft’s answer to Apple’s Siri or Google Now – uses. This includes:

[…] device location, data from your calendar, the apps you use, data from your emails and text messages, who you call, your contacts and how often you interact with them on your device. Cortana also learns about you by collecting data about how you use your device and other Microsoft services, such as your music, alarm settings, whether the lock screen is on, what you view and purchase, your browse and Bing search history, and more.

Note that the “and more” statement basically covers everything that you do on a device. Nothing, in principle, is excluded.

Privacy by default

It is very difficult to trust any company that does not take a “security and privacy by default” approach to its products, and then makes it deliberately difficult to actually change settings in order to implement a user’s preferences for privacy settings.

This has manifested itself in another Windows 10 feature called WiFi Sensethat has had even experts confused about the default settings and its potential to be a security hole.

WiFi Sense allows a Windows 10 user to share access to their WiFi with their friends and contacts on Facebook, Skype and Outlook. The confusion has arisen because some of the settings are on by default, even though a user needs to explicitly choose a network to share and initiate the process.

Again, Microsoft has taken an approach in which the specific privacy and security dangers are hidden in a single setting. There is no way to possibly vet who, amongst several hundred contacts, you really wanted to share your network with.

There are steps users can take to mitigate the worst of the privacy issues with Windows 10, and these are highly recommended. Microsoft should have allowed users to pay a regular fee for the product in exchange for a guarantee of the levels of privacy its users deserve.


上一篇:雷特综合症(Rett syndrome)治疗的新靶标
收藏 IP: 61.134.23.*| 热度|

1 张骥

该博文允许注册用户评论 请点击登录 评论 (2 个评论)


Archiver|手机版|科学网 ( 京ICP备07017567号-12 )

GMT+8, 2025-1-4 12:06

Powered by ScienceNet.cn

Copyright © 2007- 中国科学报社
