mirror of
https://github.com/QubesOS/qubes-doc.git
synced 2024-10-01 01:25:40 -04:00
55 lines
2.1 KiB
Markdown
55 lines
2.1 KiB
Markdown
---
|
|
layout: default
|
|
title: Security
|
|
permalink: /security/
|
|
redirect_from:
|
|
- /en/security/
|
|
- /en/doc/security/
|
|
- /en/doc/qubes-security/
|
|
- /doc/QubesSecurity/
|
|
- /wiki/QubesSecurity/
|
|
- /en/doc/security-page/
|
|
- /doc/SecurityPage/
|
|
- /wiki/SecurityPage/
|
|
- /trac/wiki/SecurityPage/
|
|
---
|
|
|
|
Qubes OS Project Security Center
|
|
================================
|
|
|
|
- [Security Goals](/security/goals/)
|
|
- [Security Pack](/security/pack/)
|
|
- [Security Bulletins](/security/bulletins/)
|
|
- [Canaries](/security/canaries/)
|
|
- [Xen Security Advisory (XSA) Tracker](/security/xsa/)
|
|
- [Why and How to Verify Signatures](/security/verifying-signatures/)
|
|
- [PGP Keys](http://keys.qubes-os.org/keys/)
|
|
|
|
Reporting Security Issues in Qubes OS
|
|
-------------------------------------
|
|
|
|
If you believe you have found a security issue affecting Qubes OS, either directly or indirectly (e.g. the issue affects Xen in a configuration that is used in Qubes OS), then we would be more than happy to hear from you!
|
|
|
|
We promise to treat any reported issue seriously and, if the investigation confirms it affects Qubes, to patch it within a reasonable time, and also to release a public Security Bulletin that describes the issue, discusses potential impact of the vulnerability, references applicable patches or workarounds, and also credits the discoverer.
|
|
|
|
The list of all Qubes Security Advisories published so far can be found [here](/security/bulletins/).
|
|
|
|
The Qubes Security Team
|
|
-----------------------
|
|
|
|
The Qubes Security Team can be contacted via email using the following address:
|
|
|
|
~~~
|
|
security at qubes-os dot org
|
|
~~~
|
|
|
|
### Qubes Security Team GPG Key ###
|
|
|
|
Please use the [this GPG key](http://keys.qubes-os.org/keys/qubes-os-security-team-key.asc) for encrypting any emails sent to this address. Like all the GPG keys used by the Qubes project, this key is signed with the Qubes Master key. Please see [this page](/security/verifying-signatures/) for more information on how to verify the keys.
|
|
|
|
### Members of the Security Team ###
|
|
|
|
- Joanna Rutkowska \<joanna at invisiblethingslab dot com\>
|
|
- Marek Marczykowski \<marmarek at invisiblethingslab dot com\>
|
|
|