Hello Amr Adam,
WCG makes full use of the encryption (SSL) offered by BOINC. I have often heard that it is the only BOINC project that does so. I have not checked other projects myself, so this may be an exaggeration. WCG treats your registration information as private by default. Project software and recommended BOINC versions are security-vetted, though members are allowed to use other versions of BOINC.

IBM has been careful to satisfy corporate security standards. What sort of security issues are you interested in?

Lawrence

Hello Amr Adam,
Because all communication is encrypted, it is not possible to insert spyware into the download. To subvert the WCG BOINC, it is necessary to first subvert the IBM controlled WCG servers. Hopefully your bank's computers are equally well protected. This is not a website run by people who do not understand security. IBM has an excellent security reputation. Use Google and you will not find any successful hacks into the World Community Grid.

Even government created spyware such as Gauss finds it too hard to penetrate the security on bank servers, so the spyware is inserted on flash sticks to subvert user's computers. This shows that high level server security such as IBM uses really works well. Otherwise government agencies would simply siphon information about monetary transactions from bank servers.

This is the real argument. Even very good hackers stick to taking over low-security computers. But you will probably find that paranoia cannot be reassured by logic. Just point out that the encrypted link means that nobody can use the Internet link to subvert your computer if it is running WCG BOINC. The only danger is if hackers can subvert the IBM-run WCG servers, which has never happened and probably never will. If that does not reassure them, just shrug and give up.

Lawrence