zlacker

[parent] [thread] 2 comments
1. slayma+(OP)[view] [source] 2017-07-11 14:58:27
The point of Qubes is not perfection. It instead tries to put in barriers so that compromising one part does not compromise the whole.
replies(1): >>krylon+A1
2. krylon+A1[view] [source] 2017-07-11 15:10:48
>>slayma+(OP)
If I understand it correctly, ME has basically unrestricted access to RAM, bypassing the CPU and any restrictions the hypervisor and/or operating system may impose.

If I can peek and poke around in your RAM as I please, no amount of cleverness is going to save you if my intentions are malicious.

(Don't worry, though, I have no such intentions, and I don't fiddle with other people's RAM as a matter of principle, unless they ask me to. ;-))

replies(1): >>slayma+Bh9
◧◩
3. slayma+Bh9[view] [source] [discussion] 2017-07-16 03:53:50
>>krylon+A1
You can prevent certain things through address randomization and by using canaries to try and detect intrusions. I think if you made the system self modifying and incorporated a true RNG, it would be theoretically possible to obfuscate it at run time to malicious observers assuming attackers haven't seen observed the complete obfuscation process.
[go to top]