qubes-doc/project-security/canary.md

30 lines
1.2 KiB
Markdown
Raw Normal View History

2016-11-26 05:14:03 -05:00
---
lang: en
layout: doc
permalink: /security/canary/
redirect_from:
- /security/canaries/
- /doc/canaries/
ref: 208
2021-07-08 21:06:41 -04:00
title: Qubes canaries
2016-11-26 05:14:03 -05:00
---
2021-06-18 09:25:06 -04:00
A **Qubes Canary** is a security announcement periodically issued by the [Qubes
2021-06-24 07:55:46 -04:00
Security Team](/security/#qubes-security-team) through the [Qubes Security
2021-06-18 09:25:06 -04:00
Pack](/security/pack/) consisting of several statements to the effect that the
signers of the canary have not been compromised. The idea is that, as long as
signed canaries including such statements continue to be published, all is
well. However, if the canaries should suddenly cease, if one or more signers
begin declining to sign them, or if the included statements change
significantly without plausible explanation, then this may indicate that
something has gone wrong.
2016-11-26 05:14:03 -05:00
2021-06-18 09:25:06 -04:00
The name originates from the practice in which miners would bring caged
canaries into coal mines. If the level of methane gas in the mine reached a
dangerous level, the canary would die, indicating to miners that they should
evacuate. See [Wikipedia: warrant
canary](https://en.wikipedia.org/wiki/Warrant_canary) for more information, but
bear in mind that Qubes Canaries are not strictly limited to legal warrants.
## Full list