Linked by Thom Holwerda on Tue 30th Aug 2011 17:29 UTC, submitted by Dale Smoker
OSNews, Generic OSes "What would an operating system look like it if were redesigned with security in mind? Joanna Rutkowska thinks she has the answer with the development of Qubes OS. We sit down for an interview with Joanna to discuss the way Qubes OS augments security."
Permalink for comment 487766
To read all comments associated with this story, please click here.
Comment by yoshi314@gmail.com
by yoshi314@gmail.com on Wed 31st Aug 2011 10:58 UTC
yoshi314@gmail.com
Member since:
2009-12-14

it is a nice concept but it won't protect against exploits limited to a single application. especially the browser.

if someone exploits your browser into revealing your passwords, or tells it to wipe clean your home directory - it's possible it will succeed.

it won't escalate outside of application's vm, but it's still a problem.

filesystem damage can be alleviated with vm mechanism or filesystem snapshots, private data leaks cannot.

it gets more interesting if you want to share a directory between two apps that are on different security level and ensure that they can exchange the files, and protect against potential data damage in case each app is compromised/unstable.

Reply Score: 1