OS level se­cu­rity

OpenSource For You - - ADMIN -

Pop­u­lar op­er­at­ing sys­tems like Win­dows or OS X suf­fer from se­cu­rity is­sues due to their pre-in­stalled de­pen­den­cies. For ex­am­ple, open­ing an in­no­cent por­ta­ble ex­e­cutable (PE) down­loaded from the In­ter­net with­out know­ing about the ac­tual func­tion­al­ity of the par­tic­u­lar PE, al­lows mal­ware to ex­e­cute on your com­puter. Once the mal­ware is ex­e­cuted, the en­tire OS is com­pro­mised. Tra­di­tional se­cu­rity sys­tems like an­tivirus soft­ware and fire­walls are not ca­pa­ble of de­tect­ing present day at­tacks/ in­tru­sions. The Qubes OS pro­vides se­cu­rity ser­vices at the op­er­at­ing sys­tem level; hence, it is called a se­cu­rity-ori­ented OS (Fig­ure 1).

Qubes al­lows users to de­fine their own se­cu­rity do­mains, which are im­ple­mented as light­weight VMs or Ap­pVMs. A per­son can have per­sonal, work-re­lated, shop­ping, bank­ing and ran­dom Ap­pVMs and can use the ap­pli­ca­tions within those VMs. How­ever, th­ese ap­pli­ca­tions are well iso­lated from each other. Qubes also sup­ports se­cure copy-and-paste and file shar­ing be­tween the Ap­pVMs. The OS ex­e­cutes all the ap­pli­ca­tions in iso­lated VMs in or­der to achieve se­cu­rity with­out be­ing com­pro­mised. For ex­am­ple, a user can down­load any type of file from the In­ter­net and can

To view var­i­ous com­mand line tools, please ex­e­cute the fol­low­ing com­mand:

For man­ag­ing Ap­pVMs and Tem­plateVMs, a GUI based ‘Qubes Vir­tual Man­ager’ is used (Fig­ure 2).

Newspapers in English

Newspapers from India

© PressReader. All rights reserved.