Microsoft Windows is probably the most-widely used operating system (OS) in the world, so much so that is the OS used by Indian defence forces as well. However, things are about to change. According to The Hindu, the Defence Ministry has ditched Windows for an indigenously built operating system — Maya.
While Maya OS will be used by the Defence Ministry for now, eventually the plan is to replace Windows across the Army, Airforce, and Navy, forming the future operational system. Here, some may argue that the development is a decade late, given China has been using Kylin, their own indigenously developed OS, for over a decade now. The move may be late, but is a welcome one indeed.
However, Maya OS is not the first Indian indigenously built operating system. In 2007, the Centre for Development of Advanced Computing (C-DAC) released the Bharat Operating System Solutions (BOSS) with the aim of promoting the adoption of free and open-source software throughout India. Available in 19 Indian languages, BOSS was also being used by the Indian Army. In 2017, Army’s Jammu & Kashmir-based Northern Command integrated the indigenous operating system to enhance cyber security and protect the Army’s communication and information networks from cyber attacks.
Taking into account the Army’s initial trials with BOSS as far back as over six years, the prevailing query is why the government chose to create a fresh operating system, especially when reports suggest that the Indian Army was already experimenting with BOSS.
Based on Ubuntu Linux distribution
OS Maya is based on the open-source Ubuntu Linux distribution and has been developed locally by government agencies within a time period of six months. Agencies involved include the Centre for Development of Advanced Computing (C-DAC), the Defence Research and Development Organisation (DRDO), and the National Informatics Centre (NIC). Despite being based on Ubuntu Linux, Maya boasts an interface and functionalities similar to Windows, ensuring a seamless transition for users.
It also provides compatibility with prevalent applications like Microsoft Office, Adobe Photoshop, and AutoCAD, which are extensively utilised by the ministry. Additionally, it incorporates advanced attributes like cloud storage, encryption, digital signature, and biometric authentication, bolstering both security and functionality.
“One valuable aspect is the increased control over the operating system’s functionality. This facilitates adaptability for custom applications, industrial automation, and seamless functioning of defence software. Furthermore, it guarantees regular security patches without disrupting mission-critical applications,” Kiran Vangaveti, founder & chief executive officer at BluSapphire Cyber Systems, told AIM.
Given Linux is open source, it makes sense for the Indian government to build Maya on top of it instead of building an operating system from scratch. “Due to being open source, Linux stands as the top preference for organisations seeking to develop their own operating systems to power some of their products, like routers, Internet-of-Things (IoT) and some cybersecurity devices. It provides a key foundation versus starting from scratch entirely,” Satnam Narang, senior staff research engineer at Tenable, told AIM.
Ensuring cyber resilient is an arduous task
Windows is the most widely used operating system in the world and in comparison, Linux powers around just 3% of global desktops. Shifting to a Linux-based operating system will provide some relief when it comes to cyberattacks. “While it’s safe to say that this shift will eliminate ‘some’ of the challenges, it doesn’t change the fact that cybercriminals, especially those determined to breach these networks, including advanced persistent threat (APT) groups, will stop their attempts,” Narang elaborated.
Moreover, Microsoft has invested substantial resources, including billions of dollars, into fortifying the cybersecurity of Windows. Developing a similar level of cyber resilience for OS Maya could demand comparable investments and resources. However, the question arises whether Indian government agencies possess the financial capacity and resources to allocate towards such an endeavour. The scale of Microsoft’s commitment to Windows security highlights the substantial efforts needed for a robust operating system security framework, urging careful consideration for India’s own OS, Maya.
In India, abundant technical prowess exists, but the challenge lies in consistent direction and commitment. “Ensuring the operating system stays updated with security patches, adapting to changing infrastructure and use cases, creating driver ecosystems for compatibility and fostering user adoption through continuous engagement with the community is a distinct challenge. This demands substantial vision, determination, and funding. In a nation where election priorities shift unpredictably like the weather, its outcome is uncertain,” Vangaveti said.
Given that OS Maya is built on top of the open-source Linux distribution known as Ubuntu, it already has access to regular software updates that include security fixes. But things can get complicated when new applications are built on top of OS Maya, introducing the potential for various bugs.
“There are also reports that Maya OS will include an endpoint security software known as Chakravyuh, though details about it remain undisclosed. Having some type of security software is key. But I think for the Defence Ministry and others that utilise Maya OS, it will also be important to ensure they have the proper incident response processes in place, whether that’s in-house or through collaboration with the Indian Computer Emergency Response Team (CERT-IN) to ensure a speedy response to potential cyber incidents,” Narang said.
Relevance amidst a cyberwar
The primary reason the Defence Ministry is dumping Windows is to prevent malware and cyber attacks. Various ministries and agencies have been victims of numerous cyberattacks in recent years. A report from 2019 mentioned that the Indian Army faced at least two cyberattacks every month. Most of these attacks originate from neighbouring countries Pakistan and China and are not limited to just defence organisations and ministries. Last year, Solar Industries Limited India, the parent company of a private defence ministry contractor producing explosives, fell victim to a ransomware attack. Similarly, last year, Central Depository Services Limited (CSDL) detected malware in some of its internal machines.
Interestingly, India is not a just victim, but various cyberattacks in Pakistan and China also originate from the Indian soil. Hence, an indigenously made OS makes sense. Moreover, with the advent of AI, the very landscape and dynamic of cybersecurity is evolving. Maya OS will lead to enhanced security, cyber resilience and reduced dependency. Moreover, it will provide greater control over data, sensitive information, and communication channels.
“There are trade-offs in every decision, even switching to a Linux-based operating system has its benefits. However, maintaining a consistent schedule of software updates holds equal significance as it is possible for these systems to fall behind on patches for the underlying operating system and software applications installed on those systems,” Narang said.
Scepticism remains
Earlier this year, government officials including Union Minister Ashwini Vaishnaw heavily promoted on social media an indigenous operating system which will take on the likes of Android and iOS. Called BharOS, the system was developed by JandK Operations Private Limited, an Indian Institute of Technology (IIT) Madras-incubated firm.
But since BharOS was developed by merely a fork of the Android Open Source Project (AOSP) devoid of Google apps, another question being put forth was whether it was appropriate to promote it as a truly indigenous technology. Similarly, given that not much is known about Maya OS, parallels can be drawn since the operating system is again based on the open-source Ubuntu Linux distribution.
The post Maya is Not the First Indigenously Built Operating System in India appeared first on Analytics India Magazine.
