Google
 
   
Login
Username:

Password:


Lost Password?

Register now!
Search

Advanced Search
Main Menu
top books
Polls
What do you think about php-deluxe.net?
Excellent!
Cool
Hmm..not bad
What the hell is this?
encyclopedia
Google (verb)
Autovivification
TADS
Categories for...
IPv4 mapped address
Zenith Data Systems
Ming library
recommendation
compare webbrowser
Freenet DSL
Who's Online
7 user(s) are online (6 user(s) are browsing encyclopedia)

Members: 0
Guests: 7

more...
browser tip
Unix Befehle
manual of unix befehle
recommendation!
Sponsored
partner

Security focused operating system

This is an alphabetical list of s; but this as such does not make them secure.

In our context, Security-focused means that the project is devoted to increasing the security as a major goal. As such, something can be secure without being security-focused. For example, almost all of the operating systems mentioned here are faced with security bug fixes in their life time; however, they do all strive to consistently approach all generic security flaws inherent in their design with new ideas in an attempt to create a secure computing environment.

= Berkeley Software Distribution =

BSD is a family of free, open source Unix variants derived from a codebase originating at the University of California, Berkeley. All derived BSD operating systems are all released under the terms of a BSD licence. There are several BSD variants, with only one being heavily focused on security.

== OpenBSD ==

OpenBSD is an open source BSD operating system that is known to be concerned heavily with security. The project has completed rigorous manual sweeps of the code to address issues most systems haven t. OpenBSD also supplies an executable space protection scheme known as W xor X, as well as a ProPolice compiled executable base.

== TrustedBSD ==

TrustedBSD is an sub-project of FreeBSD designed to add trusted operating system extensions, targeting the Common Criteria for Information Technology Security Evaluation (see also TCSEC). Its main focuses are working on access control lists, event auditing, extended attributes, mandatory access controls, and fine-grained Capability_(computers). Since access control lists are known to be confronted with the confused deputy problem, capabilities are a different way to avoid this issue. As part of the TrustedBSD project, there is also a port of the NSA s FLASK/TE implementation in SELinux to run on FreeBSD. Many of these trusted extensions have been integrated into the FreeBSD 5.x current development track.

= Linux =

Linux_kernel is a free, open source Unix variant created by Linus Torvalds. Linux itself is not inherently security-focused; however, many distributions and projects attempt to make Linux secure. It is also free, and licensed under the Gnu GPL v2 open source license.

== Adamantix ==

Adamantix is a Debian-based, security-focused Linux distribution. It employs a PaX and ProPolice protected base, and utilizes the RSBAC Mandatory access control system.

== Gentoo Linux (Hardened) ==

Hardened Gentoo is a subproject of the Gentoo Linux Linux project.

Hardened Gentoo offers a ProPolice protected and Position Independent Executable base using the exact same package tree as Gentoo. Executable space protection in Hardened Gentoo is handled by PaX.

The Hardened Gentoo project is an extremely modular project, and also provides subprojects to integrate other Intrusion-detection system and Mandatory access control systems into Gentoo. All of these can be optionally installed in any combination, with or without PaX and a ProPolice base.

== Immunix ==

Immunix is a commercial distribution of Linux focused heavily on security. They supply many systems of their own making, including StackGuard; cryptographic signing of executables; race condition patches; and format string exploit guarding code. Immunix traditionally releases older versions of their distribution free for non-commercial use.

Note that the Immunix distribution itself is licensed under two licenses: The Immunix commercial and non-commercial licenses. Many tools within are GPL, however; as is the kernel.

= Solaris Operating Environment =

Solaris is a Unix variant created by Sun Microsystems. Solaris itself is not inherently security-focused.

Solaris is, As of 2004, still maintained. It is a commercial Unix system.

== Trusted Solaris ==

Trusted Solaris is a security-focused version of the Solaris Operating Environment Unix operating system. Aimed primarily at the government computing sector, Trusted Solaris adds detailed auditing of all tasks, pluggable authentication, mandatory access control, additional physical authentication devices, and fine-grained access control. Versions of Trusted Solaris through version 8 are Common Criteria certified. See [http://wwws.sun.com/software/security/securitycert/trustedsolaris.html] and [http://wwws.sun.com/software/security/securitycert/images/TSol8_7-03CMS.jpg] Trusted Solaris Version 8 received the EAL4 certification level augmented by a number of protection profiles. See [http://csrc.nist.gov/cc/Documents/CC%20v2.1%20-%20HTML/PART3/PART36.HTM] for explanation of The Evaluation Assurance Levels.

= See also =

  • Common Criteria
  • TCSEC
  • Comparison of operating systems
  • Capability (computers)
  • Computer security#Capabilities vs. ACLs
  • Computer security
  • IX (operating system)
  • OpenBSM
  • Security-evaluated operating system
  • Security engineering

    • = External links =

    *[http://adamantix.org/ Adamantix] *[http://csrc.nist.gov/cc/Documents/CC%20v2.1%20-%20HTML/PART3/PART36.HTM Evalutaion Assurance Levels] *[http://www.FreeBSD.org/ FreeBSD] *[http://hardened.gentoo.org/ Hardened Gentoo] *[http://www.immunix.org/ Immunix] *[http://www.kernel.org/ Linux Kernel Archive] *[http://www-128.ibm.com/developerworks/linux/library/l-sppriv.htmlca=dgr-lnxw04Privileges Security mechanisms in newer operating systems] *[http://openbsd.org/ OpenBSD] *[http://www.trustedbsd.org/ TrustedBSD] *[http://wwws.sun.com/software/solaris/trustedsolaris/ Trusted Solaris]