Explore the security architectures and mechanisms of Zephyr and Fuchsia operating systems in this informative conference talk by Stephen Smalley and James Carter from the National Security Agency. Delve into the unique approaches these emerging open-source systems take compared to Linux, with Zephyr targeting resource-constrained IoT devices and Fuchsia employing a capability-based microkernel for more capable devices. Learn about ongoing efforts to enhance their security features, and gain insights into how they compare to Linux and Android. Discover Zephyr's evolution from its beginnings to its current implementation of OS protections, userspace support, and memory model, as well as areas for future development. Examine Fuchsia's security mechanisms, including handles, job policies, namespaces, and sandboxing, while considering the potential for mandatory access control (MAC) implementation. Compare these systems to Linux OS security and engage with the speakers' expertise through a Q&A session. Read more