> That's like saying a bank vault is secure after being rebuilt from being broken into. Mean...

fsflover • last Monday at 6:40 PM • 1 reply • view on HN

> That's like saying a bank vault is secure after being rebuilt from being broken into. Meaningless.

Did you even read my reply? All data are safe unlike in your (unrelated) example. Give me your actual threat model. 100% security never existed and never will. Security through correctness never worked and never will. Compartmentalization is the only viable approach.

Replies

JCattheATM • last Monday at 7:30 PM

> All data are safe

This simply isn't the case. Any data in the VM is vulnerable if the VM has a vulnerability allowing exfiltration.

> Give me your actual threat model.

A vulnerability in the VM allowing exfiltration.

> 100% security never existed and never will.

Then why did you suggest Qubes as a 100% secure OS?

Are you now admitting you were wrong to do so?

> Security through correctness never worked and never will.

Security clearly isn't your area of expertise. Security through correctness is indeed a solution to many/most threats.

> Compartmentalization is the only viable approach.

Hardly. It can help, but at most it's a workaround.

➕ show 1 reply

alt Hacker News

Replies