Posts: 15,788
Threads: 10,127
Thanks Received: 9,299 in 7,445 posts
Thanks Given: 10,212
Joined: 12 September 18
13 March 24, 16:13
(This post was last modified: 13 March 24, 16:13 by harlan4096.)
Quote:Kaspersky has released Kaspersky OS, according to them, a micro-kernel, cyber-immune operating system. Its intended use is IoT and smart devices:
https://os.kaspersky.com/wp-content/uploads/sites/31/2022/09/kasperskyos_business_en.pdf
https://os.kaspersky.com/technologies/microkernel/
https://os.kaspersky.com/
Benefits of Micro-kernel
Microkernel in Operating Systems - GeeksforGeeks
Quote:Advantages of Kaspersky Security System![[Image: lock_1_outline.svg]](https://os.kaspersky.com/wp-content/uploads/sites/31/2020/10/lock_1_outline.svg)
Default DenyAny interaction that isn't explicitly allowed by the security policy is blocked. The Default Deny principle underlies all secure solutions based on KasperskyOS.![[Image: 01_adaptive-1.svg]](https://os.kaspersky.com/wp-content/uploads/sites/31/2020/10/01_adaptive-1.svg)
Variety and flexibility of policiesThe solution developers can combine many different models to create policies that best meet your security goals. The PSL language is designed to describe the security policy in terms of the solution itself.![[Image: protection_done_outline-1-1.svg]](https://os.kaspersky.com/wp-content/uploads/sites/31/2020/10/protection_done_outline-1-1.svg)
Reliability of the generated codeThe developer doesn't have to write code that implements the security policy. Instead, it's generated by a special compiler based on the PSL description. You can trust code generated on the basis of well-studied models. Separation between security policies and business logicThe implementation of security policies is separated from the application code. As a result, they can be modified independently, thus significantly simplifying the work of app developers and solution architects.Features of the technologyKaspersky Security System is a monitor where the kernel sends all IPC messages to check them for compliance with the specified security policy. Moreover, the objects can access Kaspersky Security System directly using a special interface, which opens up additional opportunities for security architects.
To simplify policy creation, we developed a dedicated Policy Specification Language (PSL). The PSL syntax allows you to combine various security models in a single policy, including finite-state and timed automatons, TE (Type Enforcement), role-based access control (RBAC) models, and many others. You can also develop your own policy classes. At the same time, PSL is an expressive language where descriptions are developed in terms of the task.
The Policy Specification Language relieves developers of the need to write security policy implementation or configure the Kaspersky Security System manually. All you need to do is run a special compiler to optimize the Kaspersky Security System code for the selected task from the PSL description.
Kaspersky Releases Micro-Kernel Operating System
![[-]](https://www.geeks.fyi/images/collapse.png "[-]")
