Secure OSes

Reasonably Secure OSes

These OSes are reasonably well designed and tend to be a bit more secure than the traditional monokernels, though they lack the higher assurances of the more advanced systems lower down the page.

• OpenBSD
• Qubes OS: A reasonably secure operating system
• Whonix
• Tails - Privacy for anyone anywhere
• Genode - Genode Operating System Framework

Virtualized/Compartmentalized OSes

• An Introduction to Qubes OS | Qubes OS
• The Invisible Things Lab’s blog: Anti Evil Maid
• The Invisible Things Lab’s blog: Evil Maid goes after TrueCrypt!
• RancherOS | Rancher Labs

RTOS

While these aren’t really security focused, they tend to have better code quality due to their nature of having to keep in sync with real time.

Formally Verified Microkernels

A good but incomplete list of Microkernels.

Security Enhanced L4

• seL4

Certified Kit Operating System

• The Science of Deep Specification
• CertiKOS@yale: Home
• CertiKOS

Articles

• CertiKOS: A breakthrough toward hacker-resistant operating systems | YaleNews
• CertiKOS: A Step Toward Hacker-Resistant Operating Systems
• CertiKOS: Yale develops first hacker-proof operating system
• osdi16-gu.pdf
• Unhackable OS? CertiKOS enables creation of secure system kernels | ZDNet

Security Kernel OSes

• GEMSOS - Aesec
• PitBull Trusted Operating System - General Dynamics Mission Systems
• STOP™ | BAE Systems | United States

See also

• Unikernels & Rump Kernels
• Cyber Defense Triad