Discussion in 'other security issues & news' started by Pedro, Oct 7, 2008.
NSA shows the way to develop secure systems
Such projects for secure OS already exist in many government security agencies, and most of them are Unix/Linux based OS.
There is some secure Linux distributions which take advantage of the NSA work with SeLinux like Engarde.
For commercial OS, Secure64 has build,SourceT MicroOS, a secure OS designed for critical infrastructures.
It has been audited as immune of malwares, rootkits and vulnerabilities by Matasano.
And the team provides an interesting paper aout the how to of a secure OS.
But of course, absence of flaws does not mean non-existence of flaws.
An OS can be considered as statistically secure, without beeing technically secure.
The end user just need to get a confidential OS like those ones, instead of an OS for the mass like Windows.
The Insecurity/Security world focus for the most part on Microsoft products which represent a kind of heresy from a business point of view (in which industry could we find such monopole ?).
So finally can we build secure systems without the need of the NSA ?
YES WE CAN
The NSA herself seems to have already found and certified this secure OS wih Integrity.
But like any commercial real-time or embedded OS, it is not designed and accessible for the mass.
Microsoft is not sleeping, and must not if we consider the latest official TCP/IP BO which affects Vista...
Midori, based on the Syngularity research OS, might be the future of Windows...
so wait and see...
Interesting, thank you kareldjag.
Separate names with a comma.