Hello qubes developers! I have a question about qubes vm's. Would it make sense to implement a method for password protecting(and maybe even encrypting it with that password) individual vm's?
Correct me if I am wrong, but it seems that by doing so, vm's are harder to access in case of a compromise. For example, if someone were to break out of the xen hypervisor and gained access to dom 0, although this would be a fatal compromise, having some specific vm's encrypted when turned off(like the vault vm for example) should protect the content of those vm's since it's content is encrypted. You could see it as full disk encryption, but only for specific vms, and needing the encryption password the even boot the vm and see its content. I think this could potentially a nice feature to have in a future qubes release, what do you all think off this? All suggestions and comments on this idea is welcome. P. S. I wasn't sure were to poste this question, since it seems to be related to development to me, please point out where I should ask this if I got this wrong :) Best regards, Blacklight447 -- You received this message because you are subscribed to the Google Groups "qubes-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-devel+unsubscr...@googlegroups.com. To post to this group, send email to qubes-devel@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-devel/7E47ZVT-tAn-QgHNbm3nlVomapSfs81QHUNosoeJBaYAduc8WCRb0rElFvsGTcjB5S6SWBFcUjuSVTShGSE7usfIsKjAlSjW3wZyNaVNYZY%3D%40protonmail.com. For more options, visit https://groups.google.com/d/optout.
