isolated Java HVM?

16 views
Skip to first unread message

67547654765476547654765476547654765476547654765467

unread,
Jun 7, 2016, 1:03:56 PM6/7/16
to qubes-users
Hello,

assume I install in my TVM1 two apps:

i) CleanApp1: one might have a very clean coding (imagine that kgpg is written not in Java and has no systematic weaknesses, bugs and back doors)

ii) JavaApp2: one JAVA application

If I start the VM1 based on TVM1, where only CleanApp1 is mapped...

Will be the overall security the same, because as long the JAVA-Stack will be not a active part, I can run the VM1-CleanApp1 without any JAVA-vulnerabilities?

Or should I be aware, that some JAVA installation, might weaken my TVM1 and also my VM1 and all data which get processed?

(So a workaround, would be to build a HVM for all JAVA-apps, this will isolate all JAVA apps from the other once and I can transfer the data-files, like a PDF to get printed or stored in a database.)

Kind Regards

Reply all
Reply to author
Forward
0 new messages