Rusbiteh-Astra LLC presented the ASTRA Linux Special Edition 1.7 distribution, which represents a special purpose assembly, providing protection for confidential information and state secrets to the level of “special importance”. The distribution is based on the Debian GNU / Linux batch database. The user environment is based on the FLY proprietary desktop (interactive demonstration) with components using the Qt library.
Distribution applies within the framework of the license agreement, which imposes a number of limitations on users, in particular, prohibited commercial use without the conclusion of the license agreement, decompilation and disassembling of the product. Original, implemented specifically for ASTRA Linux, work algorithms and source codes are classified as a commercial mystery category. The user is given the ability to play only one product instance on one computer or virtual machine, as well as the right to manufacture only one backup of the carrier with the product. The finished builds are not yet publicly predetermined, but the publication of the assembly for developers is expected.
Release successfully passed a set of tests in the certification system for the protection of information FSTEC of Russia in the first, highest, level of trust, i.e. It can be used to process information constituting the state secret “of special importance”. The certificate also confirmed the correctness of the application in protected systems built into the distribution of virtualization tools and DBMS.
Main changes:
- Package base updated to Debian 10. Currently, the Linux 54 kernel is offered in the distribution, but by the end of the year they promise to go to the use of release 5.10.
- Instead of several editions, characterized by the level of protection, a single unified distribution is proposed, providing three modes of operation:
- Basic – without additional protection, according to the functionality similar to the ASTRA Linux Common Edition. The regime is suitable for protecting information in state-owned information systems 3 of the security class, information systems of personal data 3-4 levels of protection and significant objects of critical information infrastructure.
- Stressed – designed to process and protect information of limited access, which does not constitute a state secret, including in state information systems, information systems of personal data and significant objects of critical information infrastructure of any class (level) of security (category of significance).
- Maximum – ensures the protection of information containing the state secret of any degree of secrecy.