As devout Catholics say about miracles, that would be something. Color me skeptical.
The Orange Book pre-dates my 30+ career in computer security. I've personally been involved in Orange Book evaluations of commercial products. It was not a happy experience. Lots of time spent, even more money spent, no return on the investment.
The problem is that what the security people want (security, duh) is not what the people budgeting for the computer want (functionality). Sometimes the security people can impose standards that products have to meet (welcome to the Defense Department alphabet soup of FISMA, FEDRAMP, and JITC), but in the long run the security team will always lose the battle to the end users.
And this makes sense. Just imagine if in 1950 the government established the Department of Computer Design, and all computers had to come from there. Do you think you'd have an iPhone today?
And so my skepticism goes far beyond whether this truly is mathematically provably secure - I don't have the skills to really address that, although there's an old saying in cryptography that everyone knows enough to design a cipher that they can't crack (which doesn't mean that someone else can't).
My skepticism goes deeper - if this kernel is as secure as is claimed, then it can only be so because functionality is severely restricted. If you restrict functionality, you make your end users very unhappy. If some of these have stars on your uniform, you are unlikely in the extreme to be able to force them to use your system.
"My hope is that in 10 years’ time, anything that is security critical is running on our system or some other one built on the principles we’ve established"Sorry, you don't get 10 years of reduced functionality - likely at significantly higher cost (those Computer Science PhDs don't pay for themselves). Your users won't stand for it, or wait for you.
And so while an unhackable computer would be very nice indeed, this almost certainly isn't it. Oh well, mustn't grumble - more work for Internet Security folks ...