Digital Edition

SYS-CON.TV
CA Exorcises Linux' Hooking Demons
CA Exorcises Linux' Hooking Demons

Computer Associates has contributed a significant piece of widgetry it calls K-Gem to the Linux kernel that should put Linux in the running for B1 security clearance by "hardening" it.

K-Gem, short for Kernel General Event Module, will also simplify the lives of other ISVs by curing the "hooking nightmare" that has haunted Linux, according CA Linux chief Sam Greenblatt.

Linux developers will no longer have to intrude on the kernel and modify it to accomplish something as seemingly basic as event notification.

K-Gem will standardize the event notification process, tell the kernel that, say, someone wants to open a file and in turn pass that "event" to a security module such as CA's own eTrust Access Control for access authorization.

Up until now - and remember Linux wasn't originally conceived of as a commercial operating system - ISVs and concerns like Linux backers IBM and HP developed their own real-time event monitoring schemes, a complicated enough process, but because there were so many cooks in the kitchen, so to speak, it made Linux insecure.

Computer Associates has essentially walled off the Linux kernel from goodness knows what kind of code and provided other ISVs with automatic event notification.

The development puts Linux on a footing with, say, Sun's Solaris, which has had built-in event notification for a dog's age.

The 25,000 lines of K-Gem code have been turned over to Linux maintainer Andrew Morton, the number-two guy in Linux development next to creator Linus Torvalds and the guy responsible for the Linux production kernel.

Once K-Gem is cleared by Linux.org, the Linux development crew, it will become part of the kernel, probably by August when the Linux kernel 2.6.8 is scheduled to go gold.

Because K-Gem touches the kernel, CA is releasing it under the GPL, putting the company on the side of the angels in the eyes of the open source community.

The development, however, does not mean that CA has turned into a charitable institution. It expects to make a buck off eTrust Access Control.

About Maureen O'Gara
Maureen O'Gara the most read technology reporter for the past 20 years, is the Cloud Computing and Virtualization News Desk editor of SYS-CON Media. She is the publisher of famous "Billygrams" and the editor-in-chief of "Client/Server News" for more than a decade. One of the most respected technology reporters in the business, Maureen can be reached by email at maureen(at)sys-con.com or paperboy(at)g2news.com, and by phone at 516 759-7025. Twitter: @MaureenOGara

In order to post a comment you need to be registered and logged in.

Register | Sign-in

Reader Feedback: Page 1 of 1

Event notification functions have been an integral part of
Linux for years. The "news" is that CA has made a client
program that may (or not) work with Linux if some code in the
kernel is changed to support the client. So that was no "news"! Please try to check your sources.

CA can make as many bucks as it wants off of Linux as long as we are free from being locked down to one vendor and free to create our own modifications. This seems to be a win-win situation for everybody.




ADS BY GOOGLE
Subscribe to the World's Most Powerful Newsletters

ADS BY GOOGLE

A valuable conference experience generates new contacts, sales leads, potential strategic partners a...
Containers and Kubernetes allow for code portability across on-premise VMs, bare metal, or multiple ...
Everyone wants the rainbow - reduced IT costs, scalability, continuity, flexibility, manageability, ...
SYS-CON Events announced today that Silicon India has been named “Media Sponsor” of SYS-CON's 21st I...
We are seeing a major migration of enterprises applications to the cloud. As cloud and business use ...
SYS-CON Events announced today that CrowdReviews.com has been named “Media Sponsor” of SYS-CON's 22n...
Founded in 2000, Chetu Inc. is a global provider of customized software development solutions and IT...
DXWorldEXPO LLC announced today that "IoT Now" was named media sponsor of CloudEXPO | DXWorldEXPO 20...
Andi Mann, Chief Technology Advocate at Splunk, is an accomplished digital business executive with e...
Most DevOps journeys involve several phases of maturity. Research shows that the inflection point wh...
DXWorldEXPO LLC announced today that ICOHOLDER named "Media Sponsor" of Miami Blockchain Event by Fi...
Today, we have more data to manage than ever. We also have better algorithms that help us access our...
DXWordEXPO New York 2018, colocated with CloudEXPO New York 2018 will be held November 11-13, 2018, ...
@DevOpsSummit at Cloud Expo, taking place November 12-13 in New York City, NY, is co-located with 22...
Bill Schmarzo, author of "Big Data: Understanding How Data Powers Big Business" and "Big Data MBA: D...
DevOpsSummit New York 2018, colocated with CloudEXPO | DXWorldEXPO New York 2018 will be held Novemb...
CI/CD is conceptually straightforward, yet often technically intricate to implement since it require...
The now mainstream platform changes stemming from the first Internet boom brought many changes but d...
Bill Schmarzo, Tech Chair of "Big Data | Analytics" of upcoming CloudEXPO | DXWorldEXPO New York (No...
CloudEXPO New York 2018, colocated with DXWorldEXPO New York 2018 will be held November 11-13, 2018,...