Apparently there is another more recent version of Kylin out there. A TDV reader commented that although the site (www.kylin-os.com) is down, the Kylin v3.0 based on a 2.6 Linux kernel does in fact contain some security features including MAC, RBAC and file system ACLs.
Update: This whole article was based on my very limited analysis of Kylin 2.1. Kylin 3.0 contains several security features similar to what is found in the SELinux extensions. Kylin 3 sounds much more like what Kevin G. Coleman was talking about in the hearing. I was not able to download Kylin 3 and didnÃƒÂ¢Ã¢â€šÂ¬Ã¢â€žÂ¢t find out about it until long after this post was made.
Update: After some comments on other blogs and forums, I took a closer look at the kernel files and this is clearly FreeBSD with linux binary compatibility.
An article from Aviation Week about U.S. efforts to create offensive cyberwar capabilities. The overall framing of the article is that the Russian use of cyberwar against Georgia in 2008 was militarily effective and that, therefore, the U.S. wants the same capabilities.
The Russian attack on Georgia last year showed weaknesses in some combat areas, but not in cyberwarfare, say U.S. analysts.
“The Russians conducted a cyberattack that was well coordinated with what Russian troops were doing on the ground,” says a longtime specialist in military information operations. “It was obvious that someone conducting the cyber[war] was talking to those controlling the ground forces. They knew where the [cyber]talent was [in Russia], how to use it, and how to coordinate it.
“That sophisticated planning at different levels of cyberwarfare surprised a lot of people in the Defense Dept.,” he says. “It looked like a seamless, combined operation that coordinated the use of a range of cyberweapons from the sophisticated to the high school kids that thought it was cool to deface official web sites. The techniques they used everybody knows about. The issue was how effective they were as part of a combined operation.”
The U.S. is looking for a tool to duplicate that kind of attack. Moreover, the Defense Advanced Research Projects Agency has awarded several contracts to information technology (IT) companies to design a cyberattack range.