Important: Please read the Qt Code of Conduct -

Securing app against other software on system

  • This is a simple, but complex question involving how to secure a qt application from other apps, malware, or even the os...

    To simplify, let's assume the OS is compromised in some way, or the OS itself is a 'bad actor'.

    Let's say then I have an app built with QT running on that 'device'.

    Is there any way in QT to prevent other software, and the OS itself from accessing the QT applications' data, window, etc. - meaning can QT prevent other software from accessing any part of my QT app?

    Thanks - if you need more of a description to clarify, just ask...

    A good example I guess to think about is imagine the Tor Browser written in QT. An obvious point of failure would be exactly this - even though Tor can encrypt everything as soon as it is entered into the application, it can't prevent the OS (especially windows and what it gives other apps) from accessing its interaction with input devices, or the window itself along with anything on it, right?

    So why all the talk that Tor actually protects you when the case is that MS or Apple or Google can easily be required to simply hook into it...

    And if that is the case, does QT provide any measure to prevent this?


  • No.

  • I hope everyone is now clear on this point.

    If a source can be identified as a person of interest right now by virtually any group who has knowledge of how to do this, or even if malware happens to spread onto a machine, the truth is right now Tor, VPNs, tunnels, proxies, or any other form of communication security does nobody any form of protection. We are all right out in the open right now, and from what I've seen by OS/browser usage statistics, this includes virtually the whole world right now (yes, even BSD and Linux).

    I just wanted to put this out there to my programming friends. Regards,

Log in to reply