On a normal system, if an attacker gains root or administrator access, he or she can run rampant. Not so on a trusted system -- at least so long as it is properly configured. Another hardened OS is EnGarde Linux, which is sold by Guardian Digital. EnGarde uses the same applications one might find in another Linux distribution, but the approach to building the final product is a bit different. Dave Wreski, CEO of Guardian Digital, told NewsFactor that the average Linux distribution "tries to be all things to all people," which makes it difficult to secure the system.. . .
On a normal system, if an attacker gains root or administrator access, he or she can run rampant. Not so on a trusted system -- at least so long as it is properly configured. Another hardened OS is EnGarde Linux, which is sold by Guardian Digital. EnGarde uses the same applications one might find in another Linux distribution, but the approach to building the final product is a bit different. Dave Wreski, CEO of Guardian Digital, told NewsFactor that the average Linux distribution "tries to be all things to all people," which makes it difficult to secure the system.

But how can you know whether to believe the promises of vendors?

This question is less of a dilemma in the case of trusted OSes, because certification standards exist. To be certified as a trusted operating system is no small endeavor, according to Hurley. "The trusted versions ... go through a rather rigorous multiyear process of asserting what the security policies are, documenting them, fault insertions, code review and rather rigorous testing," he said. The most commonly used system, at least in the United States, is the Common Criteria standard.

On the other hand, Hurley noted, hardened systems are far less well defined. "There's very little formal theory behind it, less documentation and no testing by an accredited agency."