Security is of primary importance in the modern world. Security is the capability of a device to withstand malicious attacks to avoid allowing the attacker to gain access to capabilities or data on the device. Sailfish OS aims to be a secure operating system to power the devices of users around the world.
Sailfish OS devices can be updated with so called “hotfixes” for specific security issues outside of the normal release update cadence. This allows vendors to provide users with security updates as they become available, with minimal delay. These fixes are provided as package updates via the normal package management systems, and are fully versioned and delivered securely with end-to-end encryption to avoid man-in-the-middle or other contamination attacks.
Sailfish OS currently uses a two-level security architecture. Applications available in the Harbour are rigorously tested to ensure that no malicious applications are installable by end users. Furthermore, applications available in the Harbour run at a lowered privilege level, so that they do not have access to the user’s data.
Linux user groups are used to separate privileged applications from non-privileged applications, and file system access is enforced by the Linux kernel.
In the future, Sailfish OS will use application sandboxing and per-application access control lists to control application behaviour and limit the scope of malicious activity achievable by exploiting a vulnerability in any given application or service. This security architecture will be applied to core Sailfish OS services and applications, as well as third-party Harbour applications.