Russian security vendor Kaspersky announces KasperskyOS-- a secure operating system designed for network devices, industrial control systems and the Internet of Things (IoT).
As described in a blog post by Kaspersky CEO Eugene Kaspersky, despite preconceptions the OS is not a simple Linux distribution. In fact, Kaspersky insists, "there's not a single string of Linux code in it." Instead, KasperskyOS enables a global Default Deny at the process level wrapped into a microkernel, creating "a system that does what it's instructed to and is unable to do anything else."
KasperskyOS is based on the Flux Advanced Security Kernel (FLASK) architecture used by systems such as SELinux and SEBSD, only purpose-built for security. It is designed for application in different areas with granular customisation, and as such makes a system consisting of 3 products-- the OS (KOS), a standalone secure hypervisor (KSH) and a dedicated system for secure interaction among OS components (KSS).
This means customers can use different parts according to specific needs-- one can license KSS for use in an own OS, use KSH to securely run applications without need for modification or deploy KOS in networking hardware. As such, the package should be viewed as a "project offering," with pricing varying according to customer needs.
KasperskyOS is currently avaialble for deployment by interested parties in "a variety of scenarios."
Go Q&A on 11-11