mirror of
https://github.com/QubesOS/qubes-doc.git
synced 2024-12-30 09:46:28 -05:00
54 lines
2.1 KiB
Markdown
54 lines
2.1 KiB
Markdown
---
|
|
layout: default
|
|
title: Security
|
|
permalink: /security/
|
|
redirect_from:
|
|
- /en/security/
|
|
- /en/doc/security/
|
|
- /en/doc/qubes-security/
|
|
- /doc/QubesSecurity/
|
|
- /wiki/QubesSecurity/
|
|
- /en/doc/security-page/
|
|
- /doc/SecurityPage/
|
|
- /wiki/SecurityPage/
|
|
- /trac/wiki/SecurityPage/
|
|
---
|
|
|
|
Qubes OS Project Security Center
|
|
================================
|
|
|
|
- [Security Goals](/security/goals/)
|
|
- [Security Pack](/security/pack/)
|
|
- [Security Bulletins](/security/bulletins/)
|
|
- [Canaries](/security/canaries/)
|
|
- [Xen Security Advisory (XSA) Tracker](/security/xsa/)
|
|
- [Why and How to Verify Signatures](/security/verifying-signatures/)
|
|
- [PGP Keys](https://keys.qubes-os.org/keys/)
|
|
|
|
Reporting Security Issues in Qubes OS
|
|
-------------------------------------
|
|
|
|
If you believe you have found a security issue affecting Qubes OS, either directly or indirectly (e.g. the issue affects Xen in a configuration that is used in Qubes OS), then we would be more than happy to hear from you!
|
|
|
|
We promise to treat any reported issue seriously and, if the investigation confirms it affects Qubes, to patch it within a reasonable time, release a public Security Bulletin that describes the issue, discuss potential impact of the vulnerability, reference applicable patches or workarounds, and credit the discoverer.
|
|
|
|
The list of all Qubes Security Advisories published so far can be found [here](/security/bulletins/).
|
|
|
|
The Qubes Security Team
|
|
-----------------------
|
|
|
|
The Qubes Security Team can be contacted via email using the following address:
|
|
|
|
~~~
|
|
security at qubes-os dot org
|
|
~~~
|
|
|
|
### Qubes Security Team GPG Key ###
|
|
|
|
Please use [this GPG key](https://keys.qubes-os.org/keys/qubes-os-security-team-key.asc) to encrypt any emails sent to this address. Like all GPG keys used by the Qubes project, this key is signed by the Qubes Master key. Please see [this page](/security/verifying-signatures/) for more information on how to verify the keys.
|
|
|
|
### Members of the Security Team ###
|
|
|
|
- Joanna Rutkowska \<joanna at invisiblethingslab dot com\>
|
|
- Marek Marczykowski \<marmarek at invisiblethingslab dot com\>
|