Secure by Default: Platforms (Ver. 1.0) (May 2012) (full-text).
"Platforms that are not secure by default cannot represent commercial good practice, and should not be relied upon to protect sensitive data. . . . [T]his paper will discuss desired characteristics of secure platforms; showing some ideas on how a concerted effort might be made to drive fundamental improvements in platform security. We aim to reduce the risk of a single vulnerability allowing a platform to be exploited. We will also suggest a practical example of how some of these characteristics could be provided."