Surf Wiki
Save to docs
general/operating-system-security

From Surf Wiki (app.surf) — the open knowledge base

Trusted operating system

Operating system with support for multilevel security

Operating system with support for multilevel security

Trusted Operating System (TOS) generally refers to an operating system that provides sufficient support for multilevel security and evidence of correctness to meet a particular set of government requirements.

The most common set of criteria for trusted operating system design is the Common Criteria combined with the Security Functional Requirements (SFRs) for Labeled Security Protection Profile (LSPP) and mandatory access control (MAC). The Common Criteria is the result of a multi-year effort by the governments of the U.S., Canada, United Kingdom, France, Germany, the Netherlands and other countries to develop a harmonized security criteria for IT products.

Examples

Examples of certified trusted operating systems are:

  • Apple Mac OS X 10.6 (Rated EAL 3+)
  • HP-UX 11i v3 (Rated EAL 4+)
  • Some Linux distributions (Rated up to EAL 4+)
  • Microsoft Windows 7 and Microsoft Server 2008 R2 (Rated EAL 4+)
  • AIX 5L with PitBull Foundation (Rated EAL 4+)
  • Trusted Solaris
  • Trusted UNICOS 8.0 (Rated B1)
  • XTS-400 (Rated EAL5+)
  • IBM VM (SP, BSE, HPO, XA, ESA, etc.) with RACF

Examples of operating systems that might be certifiable are:

  • FreeBSD with the TrustedBSD extensions
  • SELinux (see FAQ)

Companies that have created trusted operating systems include:

  • Addamax (BSD, SVR3, SVR4, HP/UX)
  • Argus Systems Group (Solaris, AIX, Linux)
  • AT&T (System V)
  • BAE Systems (XTS Unix)
  • Bull (AIX)
  • Data General (DG/UX)
  • Digital Equipment Corporation (Ultrix)
  • Forcepoint (Hardened SELinux)
  • Gemini Computers (GEMSOS)
  • General Dynamics C4 Systems (Linux)
  • Harris Corporation (SVR3, SVR4)
  • Hewlett-Packard (HP/UX)
  • Honeywell (Multics)
  • IBM (OS/390, AIX)
  • SCO (SCO Unix)
  • Secure Computing Corporation (LOCK, Mach, BSD)
  • SecureWare (Apple A/UX, HP/UX, SCO)
  • Sequent Computer Systems (Dynix/ptx)
  • Silicon Graphics (IRIX)
  • Sun Microsystems (SunOS, Solaris)
  • Trusted Information Systems (Xenix, Mach)

References

References

  1. List of member of the Common Criteria Recognition Arrangement: http://www.commoncriteriaportal.org/ccra/members/
  2. Common Criteria certification report http://www.commoncriteriaportal.org/files/epfiles/0536a_pdf.pdf
  3. Common Criteria certification report http://www.commoncriteriaportal.org/files/epfiles/st_vid10390-vr.pdf
  4. List of AIX certifications on [https://web.archive.org/web/20081204033521/http://www-03.ibm.com/systems/power/software/aix/certifications/index.html]
  5. "Australian Signals Directorate".
  6. Common Criteria Certification report http://www.commoncriteriaportal.org/files/epfiles/st_vid10293-vr.pdf
  7. "Support".
Info: Wikipedia Source

This article was imported from Wikipedia and is available under the Creative Commons Attribution-ShareAlike 4.0 License. Content has been adapted to SurfDoc format. Original contributors can be found on the article history page.

operating-system-security
Want to explore this topic further?

Ask Mako anything about Trusted operating system — get instant answers, deeper analysis, and related topics.

Research with Mako

Free with your Surf account

Content sourced from Wikipedia, available under CC BY-SA 4.0.

This content may have been generated or modified by AI. CloudSurf Software LLC is not responsible for the accuracy, completeness, or reliability of AI-generated content. Always verify important information from primary sources.

Report