[Full-Disclosure] [Paper] Designing secure desktop operating system

From: Timo Sirainen (tss_at_iki.fi)
Date: 07/31/04

  • Next message: please_reply_to_security_at_sco.com: "OpenServer 5.0.6 OpenServer 5.0.7 : OpenSSL Multiple Vulnerabilities" 
    To: full-disclosure@lists.netsys.com
Date: Sat, 31 Jul 2004 12:15:39 +0300

    [possibly somewhat off-topic here, secureos@procontrol.fi can be used
    for discussion about it]

    I've written down some ideas how I think it would be possible to
    implement easy to use and quite secure graphical user interface and
    operating system around it to make it possible. It's available at
    http://iki.fi/tss/security/os.html

    Currently I'd be very interested about hearing comments why my ideas
    simply wouldn't work with certain kind of software or would be just too
    much pain. Or some other fundemental technical problem why this could
    never work. Or more positively, people who would be willing to
    participate in more complete design or implementation.

    To avoid too many replies for issues that are either addressed there or
    aren't exactly relevant, please don't reply if you're only going to:

     - suggest using SELinux, Java sandboxes or similar (yes, maybe based on
    them, that's not the point)
     - say how sandboxing limits usability and it would never be user-
    friendly (it could)
     - say how user-friendliness and security are always mutually exclusive
    (they're not)
     - say how it's going to be too difficult to users to keep updating
    access control lists to run software they want (it's not needed)
     - confuse operating system with kernel (OS is more than just kernel)
     - say how no matter how "secure" you're trying to be, some people will
    always bypass it and hurt themselves/others (yes, it's true for home
    users)

    I've heard all of those too many times already and I think they're all
    answered well enough in the paper.

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: please_reply_to_security_at_sco.com: "OpenServer 5.0.6 OpenServer 5.0.7 : OpenSSL Multiple Vulnerabilities"

    Relevant Pages

    • Re: devolopin a mew lang........
      ... MS dos as like it can interract with machine directly with out the ... understand how GNU/Linux works... ... *Linux* is only a kernel. ... the GNU/Linux operating system supports the largest amount of hardware ...
      (comp.os.linux.misc)
    • Re: Hello Everyone!
      ... Since Vista is a version of MICROS~1 Wintendo and MICROS~1 Wintendo is ... the worst possible operating system on the planet (and most likely in ... Windows on the other hand is a GUI'ed and ... Wintendo also requires regular reboots and its kernel still contains ...
      (comp.os.linux.misc)
    • Re: Hello Everyone!
      ... is the worst possible operating system on the planet (and most likely ... Windows on the other hand is a GUI'ed and ... Wintendo also requires regular reboots and its kernel still contains ...
      (comp.os.linux.misc)
    • Re: that old GNU/Linux argument
      ... the kernel software is more essential than GNU software. ... The analogy with the car engine is just an easy way to ... GNU is an operating system that people inaccurately call Linux. ...
      (Fedora)
    • RE: Commercial Distribution?
      ... Linux was brought up as a well known example of the types of services being ... He gets a "Linux is a kernel not an operating ... to mean the entire distribution of applications with it as well. ... not an operating system but simply a collection of software packages stuck ...
      (freebsd-questions)