Vulnerabilities / Threats
12/7/2010
04:52 PM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

Google Launches Chrome OS Preview

The first Chrome OS netbooks will ship to a limited set of early adopters this week.

Google Chrome OS Promises Computing Without Pain
(click image for larger view)
Slideshow: Google Chrome OS Promises Computing Without Pain

In recent years, consumers have had three major desktop-oriented operating systems to choose from: Windows, Mac OS, and Linux. On Tuesday, Google introduced a fourth option, Chrome OS.

'With Chrome OS, we have the development of a viable third choice for the desktop," said CEO Eric Schmidt, evidently unconvinced that Linux counts where consumers are concerned.

At a media event in San Francisco, Google announced a pilot program for Chrome OS, its highly anticipated browser-based operating system, launched the Chrome Web Store, its effort to change the way Web apps are discovered and purchased, and provided an update on the global adoption of its Chrome browser.

Chrome OS won't be ready for a stable release until mid-2011. That's when Google's Chrome OS hardware partners Acer and Samsung are expected to ship their Chrome OS netbooks.

But Google this week plans to begin shipping specially commissioned hardware to select testers through its Chrome OS pilot program.

Program participants will receive a Google-commissioned netbook, designated Cr-48, with Chrome OS installed. The company extended invitations to event attendees, to a random group of users through an invitation placed on the Chrome new tab page, and to some Facebook users who participated in a recent quiz. Would-be Chrome OS users may also apply online and are encouraged to submit a YouTube video to convey why they should be invited into the pilot program.

"Chrome OS is nothing but the Web," said Sundar Pichai, VP of product management.

Google is throwing out the things people hate most about computers -- slow startup times, the need to update and install software, and security worries -- and offering an operating system that loads its Chrome browser instead of a desktop file system.

Those using Chrome OS will have to rely on Web applications in place of familiar favorites like Microsoft Office. To ensure an adequate supply of Web apps, Google launched its Chrome Web Store, an online app store that aims to do for Web apps what Apple's iTunes has done for music and iOS apps: build a viable market by providing a mechanism for discovery and monetization.

The Chrome Web Store has some 500 apps at launch but Google expects that developers will add many more in the months ahead. Several companies sent representatives to discuss the Web apps they've created for Chrome, including Amazon, Electronic Arts, and the New York Times.

Amazon showcased an e-commerce Web app called Amazon Windowshop and Kindle for the Web, which will be available early next year. Electronic Arts demonstrated a game called Popit that will ship with future versions of Chrome. And the New York Times showed off a newspaper reading Web app that allows the user to control how news gets presented.

Pichai acknowledged that offline functionality was necessary and demonstrated a version of Google Docs that works offline (coming early next year). But he said that the Web is better when a network connection is available. That's why Google has partnered with Verizon to offer on-demand cellular connectivity with every Chrome notebook.

The Verizon plan provides for 100 MB of free data every month for two years. It doesn't require a contract and additional data can be purchased as needed, starting at $9.99 for unlimited data for one day.

Pichai also provided an update on the adoption of its Google Chrome browser. Chrome had 70 million users in May. Now it has 120 million users worldwide.

"The single most common piece of feedback we get from our users is that Chrome is fast," he said. "Speed has been our biggest focus since day one."

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3971
Published: 2014-12-25
The CmdAuthenticate::_authenticateX509 function in db/commands/authentication_commands.cpp in mongod in MongoDB 2.6.x before 2.6.2 allows remote attackers to cause a denial of service (daemon crash) by attempting authentication with an invalid X.509 client certificate.

CVE-2014-7193
Published: 2014-12-25
The Crumb plugin before 3.0.0 for Node.js does not properly restrict token access in situations where a hapi route handler has CORS enabled, which allows remote attackers to obtain sensitive information, and potentially obtain the ability to spoof requests to non-CORS routes, via a crafted web site ...

CVE-2004-2771
Published: 2014-12-24
The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in an email address.

CVE-2014-3569
Published: 2014-12-24
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshak...

CVE-2014-4322
Published: 2014-12-24
drivers/misc/qseecom.c in the QSEECOM driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not validate certain offset, length, and base values within an ioctl call, which allows attackers to gain privileges or c...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.