Git-Mirrors/qubes-doc
1
0
Fork 0
mirror of https://github.com/QubesOS/qubes-doc.git synced 2024-12-28 00:39:30 -05:00
Code Issues Packages Projects Releases Wiki Activity

Remove section on cooperative covert channels (#651)

Browse Source 
This topic is covered more clearly and in more detail here:
https://www.qubes-os.org/doc/data-leaks/
This commit is contained in:
Andrew David Wong 2018-05-19 00:45:23 -05:00
parent c72f10754f
commit fb13227ee5
No known key found for this signature in database
GPG Key ID: 8CE137352A019A17
1 changed files with 0 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
system/security-critical-code.md
View File

@ -75,16 +75,6 @@ In practice, we trust the software provided by the [Fedora Project].
This software is signed by Fedora distribution keys, so it is also critical that the tools used in domains for software updates (`dnf` and `rpm`) are trustworthy. This software is signed by Fedora distribution keys, so it is also critical that the tools used in domains for software updates (`dnf` and `rpm`) are trustworthy.
Cooperative Covert Channels Between Domains
-------------------------------------------
Qubes does not attempt to eliminate all possible *cooperative* covert channels between domains, i.e. such channels that could be established between two *compromised* domains.
We don't believe this is possible to achieve on x86 hardware, and we also doubt it makes any sense in practice for most users.
After all, if the two domains are compromised, then it's already (almost) all lost anyway.
For more on this topic, see [Understanding and Preventing Data Leaks].
[Qubes Security Goals]: /security/goals/ [Qubes Security Goals]: /security/goals/
[Fedora Project]: https://getfedora.org/ [Fedora Project]: https://getfedora.org/
[Understanding and Preventing Data Leaks]: /doc/data-leaks/ [Understanding and Preventing Data Leaks]: /doc/data-leaks/