Comments on: Integrity-178B is now EAL6+ http://blogoftrust.com/integrity-178b-is-now-eal6/229 Watching the trusted computing world Sat, 21 May 2011 18:45:24 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: Nick P http://blogoftrust.com/integrity-178b-is-now-eal6/229/comment-page-1#comment-23935 Nick P Mon, 21 Mar 2011 04:15:07 +0000 http://blogoftrust.com/?p=229#comment-23935 It's a subset of Integrity, meaning it predates OKL4. Additionally, OKL4 hasn't been subjected to the kind of penetration testing and development assurance processes Integrity and Integrity-178B have. Finally, although OKL4 Verified is a big accomplishment, they actually didn't even meet requirements for EAL7 (as opposed to their occasional claims). They are just starting a covert channel analysis as part of the Trustworthy Embedded Systems project and incorporating other functionality that would be required in a SKPP certified kernel from the start. So, if anything, OKL4 is only a competitor in commercial sense: their assurance evidence can't compete in terms of which is more secure. It's also worth noting that Integrity still has a little competition from the last two remaining high assurance Orange Book era OS's: BAE Systems STOP (B2/EAL5+), which includes pretty much a whole UNIX-style system in its certified TCB; Aesec's GEMSOS, certified to A1/EAL7 with MLS security features. Both use x86 hardware. I think Green Hills middleware, partners, support and marketing will mean they'll beat out the other EAL5-7 vendors. VxWorks, LynuxWorks, and PikeOS are providing big competition though by eating up contracts and OKL4 dominates mobile space. Various MAC technologies on Linux are also becoming popular, with several products that use SELinux under the hood with "good enough" results. I've recently discovered a few more that are well-designed, like SMACK. Then there's more open initiatives like Turaya Security Kernel, TUD:OS Nizza Architecture, Xstraatum hypervisor, QubesOS, Xenon, and Nova microhypervisor that provide more alternatives to MILS kernels, especially in flexibility sense. INTEGRITY-178B's future is yet to be made clear. although I personally would love a SOHO router with Green Hill's Platform for Secure Networking and a TPM. Just a personal wish... ;) It’s a subset of Integrity, meaning it predates OKL4. Additionally, OKL4 hasn’t been subjected to the kind of penetration testing and development assurance processes Integrity and Integrity-178B have. Finally, although OKL4 Verified is a big accomplishment, they actually didn’t even meet requirements for EAL7 (as opposed to their occasional claims). They are just starting a covert channel analysis as part of the Trustworthy Embedded Systems project and incorporating other functionality that would be required in a SKPP certified kernel from the start. So, if anything, OKL4 is only a competitor in commercial sense: their assurance evidence can’t compete in terms of which is more secure.

It’s also worth noting that Integrity still has a little competition from the last two remaining high assurance Orange Book era OS’s: BAE Systems STOP (B2/EAL5+), which includes pretty much a whole UNIX-style system in its certified TCB; Aesec’s GEMSOS, certified to A1/EAL7 with MLS security features. Both use x86 hardware. I think Green Hills middleware, partners, support and marketing will mean they’ll beat out the other EAL5-7 vendors.

VxWorks, LynuxWorks, and PikeOS are providing big competition though by eating up contracts and OKL4 dominates mobile space. Various MAC technologies on Linux are also becoming popular, with several products that use SELinux under the hood with “good enough” results. I’ve recently discovered a few more that are well-designed, like SMACK. Then there’s more open initiatives like Turaya Security Kernel, TUD:OS Nizza Architecture, Xstraatum hypervisor, QubesOS, Xenon, and Nova microhypervisor that provide more alternatives to MILS kernels, especially in flexibility sense. INTEGRITY-178B’s future is yet to be made clear. although I personally would love a SOHO router with Green Hill’s Platform for Secure Networking and a TPM. Just a personal wish… ;)

]]>