>"The only way to protect it is to have a home-grown system, the complete architecture ... source code is with you and then nobody knows what's that."
That is a choice quote. It's amazing that India is the go-to place for outsourcing when they have such backwards ideas about security and software development. Historically, the most secure operating systems on the market have been "open", not closed.
It's amazing that India is the go-to place for outsourcing when they have such backwards ideas about security and software development
That's a horrible generalisation. India has millions of developers. Just because one thinks security by obscurity is a good idea, doesn't mean they all do.
We in India tend to think of it as defined by its diversity of culture and opinion. That multifarious landscape has its fair share of idiots and charlatans.
This is just one of them with a soapbox and the sort of government grant that keeps on giving.
I'd like to apologize for making that statement. It was a gut reaction -- hastily typed -- toward the actions of the Indian government. I, as an American who doesn't agree with most of what our government does, should understand that the people and the government are not the same. Sorry for that.
I'll just say that I think the belief that closed == secure is a stupid notion given the history we all know, no matter who holds the belief.
can you provide some justification for "Historically, the most secure operating systems on the market have been "open", not closed."?
if you take security to be assured in some sense, TCSEC might be a reasonable standard. I do not know of any open source operating system certified to A1, but there is at least one closed source OS:
http://en.wikipedia.org/wiki/XTS-400
if you mean track record, in terms of number of compromises, i'd be interested to see the data.
> I do not know of any open source operating system certified...
Certification costs money which is most likely the real reason why open source OS's have not been "certified" as secure, not because they're intrinsically insecure. OpenBSD, for example, has a reputation for being secure.
That is a choice quote. It's amazing that India is the go-to place for outsourcing when they have such backwards ideas about security and software development. Historically, the most secure operating systems on the market have been "open", not closed.