China chooses FreeBSD as basis for secure OS
Tuesday, June 30, 2009 11:40 AM
What OS would one choose as a basis for fortified software platforms? China decided to go open source, and it may be pulling ahead of the West in information warfare preparedness.
Earlier this month, in "China blocks U.S. from cyber warfare", the Washington Times reported that China has developed a "more secure operating software for its tens of millions of computers and is already installing it on government and military systems, hoping to make Beijing's networks impenetrable to U.S. military and intelligence agencies."
The article goes on to explain that China has developed a custom, security hardened OS called Kylin, which was revealed in recent Congressional hearings. As the specter of "cyber warfare" grows more vivid, U.S. policy makers and security specialists are rightly concerned at the fact that China is taking such direct action to protect itself from potential foreign information warfare threats--that this may set the United States at a disadvantage.
In "China installs a secure operating system on all military PCs", The H reports that China claims the design of the OS is proprietary on its official Kylin Web site.
The H also reports that:
an analysis of the code (Chinese page link) in the kernel indicates that it is in fact a hardened version of FreeBSD 5.3.
While I could paraphrase the message, The H put it succinctly:
This has lead to concern over the state of open source development in China. Furthermore, the advisor said that U.S. systems, which use off-the-shelf American software, such as Microsoft products, open source software, and foreign applications, would be less secure and more vulnerable to back doors allowing access during "times of war".
The harsh truth of the matter is that corporate influence in government has succeeded in retarding the progress of information technology advancement in U.S. defense policy by weighing down decision making processes with political favoritism. Meanwhile, the fact that Chinese government officials are not beholden to powerful public corporations frees them from the kind of untoward influence that has resulted in software acquisition contracts motivated more by re-election concerns than by security concerns in the United States.
All too often, the selection process in U.S. government specifically excludes all options except a very few vendors for software acquisitions. The result is that China appears to be well ahead of the curve, selecting the best OS for the job regardless of vendor influence in the West.
When the U.S. Department of Defense (DoD) is the target of no fewer than 128 information infrastructure attacks per minute from China, and we discover that China is engaged in working toward 100 percent military deployment of security hardened FreeBSD while the U.S. DoD is almost universally using off-the-shelf Microsoft Windows systems, it becomes clear that there's definitely something wrong with U.S. information security policy.
Chad Perrin is an IT consultant, developer, and freelance professional writer. He holds both Microsoft and CompTIA certifications and is a graduate of two IT industry trade schools.
There are currently no comments for this post.