Before 2008, Microsoft's Windows operating system was repeatedly frustrated in virus attacks such as Code Red, and security issues were criticized, so Microsoft launched an active security protection program called MAPP (Microsoft Active Protections Program) that year, which represented a change in Microsoft's operating system security thinking.
Microsoft no longer relies solely on its own capabilities, but through the MAPP collection of the world's excellent security vendors and technical personnel, platform vendors and Microsoft between the interoperability, from Windows XP to Windows 7, security capabilities greatly enhanced.
Among them, there are many well-known domestic security vendors to participate, operating system-level security can not rely on only one vendor, as strong as Microsoft, in the face of security problems also have to be combined vertical and horizontal, MAPP mode for operating system manufacturers and security industry has important reference significance.
Recently, the "UOS Active Security Protection Plan (UAPP)" promoted by Tongxin Software Technology Co., Ltd. was officially released, the same operating system manufacturers, UAPP and MAPP have similarities, but in the context of the localization of operating systems, Tongxin's thinking is more open than Microsoft.
The birth of UAPP
Windows and Intel formed by the Wintel alliance in the de facto sense of the dominant, in recent years the international situation has changed suddenly, the Chinese market once again set off a boom in localization, followed by a variety of problems, there are technology, there are also industries, security issues borne the brunt.
Fu Jingbo, director of the Cyber Security Industry Development Center of the Ministry of Industry and Information Technology, said that the current cyberspace has become the main battlefield of the great power game, and network security has risen to a national strategy.
First, continue to strengthen the research and development of key basic safety technologies and improve the ability to support systematic safety;
The second is to give full play to the underlying support of the operating system and the driving role of the industrial chain, and promote the establishment of a unified and standardized industry standard and security service system;
The third is to strengthen the traction of network security applications, and encourage users to actively participate in network security technology exploration, solution research, key product development and other work;
The fourth is to continue to promote the agglomeration of the network security industry and ecological innovation of Xinchuang, and improve the ability to ensure security.
Zhang Lei, senior deputy general manager of Tongxin Software, said that the overall security design of The Unified Management System includes operating system product security, application software security, terminal use security, enterprise security management and organizational process guarantee. As an operating system manufacturer, Tongxin's security design itself is relatively complete, and although the independent operating system solves the problem of the underlying control and development rights, it does not represent 100% security.
"Only the efforts of operating system manufacturers, hardware security can not be guaranteed, only hardware and operating system manufacturers efforts, software security can not be satisfied, so security is an overall architecture design issue." Zhang Lei mentioned.
Business data has the highest value for attackers, such as bank card numbers and passwords, various access rights, etc., which requires industry chain vendors to make relatively large innovations in application governance.
UAPP is mainly aimed at the level of software governance, the operating system is the carrier of various applications, but also an important part of the software supply chain, by the unified trust to promote the establishment of UAPP is more appropriate.
UAPP mainly includes three sub-programs: the Security Application Continuous Compatibility Sub-Program - to develop security interface standards and specifications to help security vendors improve the continuous compatibility of security applications; the Security Response Sub-Program - to help security partners obtain vulnerability information in advance, so as to facilitate faster security updates; and the Computer Virus Information Alliance Sub-Program - based on the core security capabilities of security partners to empower and improve the level of operating system protection capabilities.
Join the security vendors of the UOS Active Security Protection Program (UAPP) and conduct research on anti-virus, vulnerability information sharing, patch release verification mechanism, operating system security improvement, UKSI security interface specification standard, and continuous compatibility of security applications based on the UOS operating system platform to meet the deep-seated needs of users for system security and network security.
Unified management system interface
Achieve overall security with a systematic approach
UOS is based on open source Linux development, and Linux at the beginning of its birth opened up full degree of freedom, developers can view and modify the source code level and other operations, although this gives developers the greatest controllability of secondary development, but the open source software loose development model, but also faces the challenge of excessive version differentiation, difficult to unify standards, and difficulty in organization and coordination.
Zhu Jianzhong, general manager of the Tongxin Software Ecology Center, told the Titanium Media App that Tongxin and domestic security vendors have had various cooperation at the beginning, but they are not systematic enough, and as the domestic ecological market share is getting higher and higher, the industry needs a systematic organization to coordinate all aspects of the work.
It is understood that only the unified trust terminal operating system has shipped more than 3 million sets, and it is expected that in the next few years, it may exceed the scale of 10 million sets, covering China's major governments, ministries and commissions and key industry sectors.
"This is the main reason why we have proposed this plan for more than two years since the development of Xinchuang, and to solve the coordination problem of security with a more systematic approach." Zhu Jianzhong said.
"From a certain point of view, Microsoft MAPP plans to have a certain reference to Unified Trust, the problems faced by operating systems and security vendors are the same, through the standard openness, vulnerabilities and security problems of the response mechanism, etc., to achieve from passive ecological response, to high-quality ecological construction, is a very important attempt to security standardization ecological construction."
Domestic security vendors on the standard cognition has also gone through a process, at first the domestic operating system market space is not large, often there are problems and then solve the problem, such as the operating system installed a third-party security software, when the operating system version upgrade, security software may appear a variety of unexpected errors, manufacturers only realize that the operating system and security vendors between the interface standard is very important.
For security partners, Unified Trust will share some system features and system risk information with partners in advance, partners can support the latest features of the operating system for the first time, solve the security problems of the system, and Unified Trust will also fully share threat information, intelligence and other resources to help partners understand the overall situation of platform security, with the strengthening of the coordination mechanism, the future operating system manufacturers, hardware manufacturers and software manufacturers are expected to achieve closer system-level security.
The difference between the security ecology of domestic operating systems
Titanium Media App learned that the UAPP plan has begun to be implemented from 2021, compared with Microsoft, the current scale, investment and mechanism of Unified Trust, there are certainly some deficiencies, but the security alliance under the xinchuang system still has its own advantages, the main difference is in the co-construction.
The degree of openness of the domestic operating system is deeper, especially at the kernel level, all security products need to obtain a variety of information from the operation kernel, including processes, services, networks, etc., and at the same time need to call the system kernel for precise defense, patch issuance and other operations.
If the operating system kernel standards are not uniform, the difficulty of development of terminal security software will increase exponentially. In UAPP, security vendors participate in the work related to the underlying kernel security interface of UOS in the early stage, and when the CPU and operating system can open up to more space for security software, security vendors can do more work.
On the Windows operating system platform, although Microsoft MAPP will absorb the suggestions of manufacturers in the industry, but the right to speak is firmly in their own hands, other security vendors do not have the opportunity to participate in the actual underlying design, by the security vendors to participate in the kernel-level design, basically impossible.
In addition, the participants of the UAPP program are all backbone enterprises in the field of credit creation, with the same goals, smooth communication, and high efficiency in solving problems. At the national level, we are also actively exploring collaborative innovation and development mechanisms in the xinchuang environment, establishing and improving domestic security protection systems and product technical standards, and continuously improving the collaborative protection capabilities of domestic basic software and hardware security.
"After Microsoft launched from MAPP, it has greatly improved the security of Microsoft's operating system ecosystem, and we are still in its infancy, and the collaboration between subsequent operating systems and security vendors will become more and more abundant, and the collaborative communication around the security field will become more and more systematic," Zhu Jianzhong said.
(This article was first published by Titanium Media App author |.) Shuai Zhang, Editor | Gaieunda)