What is the current state of firewall software based on Trusted OS's?

Surely a design involving compartementalization of individual application level proxies would provide a more(not perfect as the breaks on Pitbull proved) secure environment?

I think that it's unreasonable to expect all these security vendors to produce perfect software. We all know how tough it is to implement secure solutions and practices.

Unfortunately, the marketing guys seem to take it to extreme's about what their product provides. The questions I tend to ask are:

1) can the product in question enable me to offer a *more* secure solution?

2) In the business context, is it cost-effective?

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/248/7028#7028