Best Practice Advice for PC KIOSK Software
Posted: Sep 16, 2014
Kiosk system software generally addresses security by keeping and deterring users from maliciously hacking into or attacking the kiosk. In essence, the system must be able to constantly prevent the misuse of the accessibility features provided. Kiosk applications bypass a device's login mechanism; this is why those who use it must always consider the security of all the applications that are added into the environment. While many kiosk applications do provide built-in security, some do not, and are at risk of experiencing malicious attacks.
It is crucial for a kiosk system to prevent any user from ever accessing the file system or from reaching the desktop. This level of security can be difficult to achieve, especially since standard print dialogs as well as email links often allow users to access the file system in that content can be printed to file and email links load default email tools and save emails to file. Keyboard-enabled kiosk systems must also disable problematic specialty keys as well as keystroke sequences to avoid problems. Additionally, standard browser menus should be disabled in the browser-based/internet kiosks so that users can have limited configuration control. It is also important that users are prevented from accessing web addresses and URLs that are not applicable to the kiosk's functions. This can be done by hiding the browser's address bar and then incorporating page and domain blocking into the browser lockdown and kiosk system software.
Even in the absence of a kiosk hardware, PCs can be configured and set-up to run in kiosk mode. This prevents users from accessing specific system functions. Choose kiosk system software providers that use only the best security practices when developing Kiosk applications. Here are the features of the ideal kiosk application that systems made based on best practices include:
- Prevents users from reaching the desktop even when the application malfunctions or crashes.
- Automatically reboots the system when the system or application crashes—including crashes caused by system level watchdogs.
- Reports kiosk status on a regular basis for monitoring purposes.
- Disables processing that are unknown or undefined in the whitelist and reports these processes back to the server.
- Password protected configuration.
- Watchdog support via third party plug-in.
- Stable client side application for guaranteed security.
- Application-initiated content and binary updates to reduce the need for end users to access the system, thus reducing the chances of compromising security.
- Data back-up on the server.
About The Author:
This article is written by David Kyalo a successful technical writer. He is interested in and fascinated by technical topics. He write unique articles on touch screen technology and specialized in finding practical touch screen software solutions.
Interactive Touchscreen Solutions - IntuiFace