Original article can be found at Rethinking-the-consumerenterprise-operating-system
The add on story for ‘Rethinking the consumer/enterprise operating system’ @ Infosec Island
Article I can easily agree.
I feel that the divergence is not necessary “required” state, but will happen on level that it supports private vs. corporate computing needs. The problem with the operating systems within mobile or with desktop environment is not the “operating system itself”, it is the structure and use cases how it is going to be utilized.
It is absurd idea that operating system under constant change and patching (not naming single one vendor here) due the security needs would serve compartmentalization as needed by the community.
However, the issue is unfortunately wider than that. In many ways. Just to introduce a few. I do have to bring ‘clouds’ to the discussion. For the obvious reason again. It is not just matter of consumer / enterprise, but enterprise / private issue as well.
Many of the organizations are utilizing more and more cloud bases services and exactly same is happening within consumer/private users.
Just an example how tight the relation is: Hardly anyone is using iPhone without iCloud? The whole ‘gadget’ is integrated with the cloud.
Similarily, no BYOD can be constructed on top of such set of functionalities and on which where private (“consumer”) and corporate interests are potentially conflicting or rely on such different models of utilizing services or maintaining the data.
SO – the question wheter or not there should be DIFFERENT operating system for the consumer market vs. enterprise market is itself bit tricky. YES, the corporate AND private interests should be met and YES, parallel capability to support both worlds through clouds with a different needs is desired – no, it is required. Does this require separate operating system for each? Maybe not.
The different management needs and capabilities does not necessary require separate operating system, though it is not possible to run them on same environment – correct?
I do not believe that offering simplified, yet effective management capability (“grandma model”) requires separate operating system development but services to cover it, like our friendly example iCloud here.
However, I do believe that coporate need to control their information flows and information assets. This could be achieved through ‘cloudified’ approach as well.
We already know that all operating environments (& systems) requires constant “keep it up-to-date” activities. I believe cloud will save us here in the long run. So the models are highly divergent, but similar by the use cases.
So how these two co-op together? Well, as CPU speed, capabilities in memory management and network speed increase I believe we will witness (no – I demand it!) a form of virtualization taking a place here. Wether or not its ‘baremetal’ approach, I can’t tell.
Possibilities exists. This is exactly what mobility requires, to be able to separate YOU from you.corporate or you.private.
The issues what exists currently with desktop environments are moving towards mobility and the game is not getting any easier.
Same vulnerabilities exists and no operating system divergence help here.
Only the compartmentalization of operating system and information assets might help, with secure enough services provided for the user entity. No BYOD ‘technology’ on top of vulnerable operating system stack relieves the pain.
So the conclusion: We need ‘operating system’ or virtualization capability which is capable to run multiple, needs based environments – operating systems
and while not required to store data and closed, it will abandon the environment and start from the fresh.
Yes, something alike exists already but not mature enough and definetly mobility aware. What we need is wide spread industry adoption for the understanding how this SHOULD be, not just stacking the issues on top of each other. In parallel, a virtual ‘SIM cards’ shall see wider adoption while me.private and me.corporate may be running simultaneously.