Ensuring hardware-level protections
Okay, I know that we’ve discussed this before, in Chapter 8 ... I feel that I must remind you that this is real. Ensuring that the end-user cannot change the configuration is key here. You have two main responsibilities in this realm. The first responsibility is the securing of the solution and the second responsibility is prevention of the end-user from controlling the operating system. By achieving both, you guarantee that your team controls the end-user experience.
If you create a user interface that simplifies how your appliance can operate securely, ultimately the appliance will be easy to use yet the end-user need not know how it works. I implore you to consider all these factors. Remove the end-user from all access to the operating system.
Create an experience where the end-user can trust that you have achieved, above all else, a secure but user-friendly platform. This is truly the field of dreams. This is what we all aspire to...
