I’ve been thinking about software and hardware backdoors recently.
The most important protection is first to have a good control over any connection, wired, wireless, electromagnetic etc. so that the compromised system cannot attempt any connection on its own.
But then, the backdoor could alter the safe/allowed connections to behave in malicious ways being undetected. For example, in context of anonymity the backdoor could somehow fingerprint or inject identifiers into connections.
Another major topic is encryption and random entropy, I guess we don’t rely on a single source, any improvements possible here?
I know thic topic is mostly theoretical but does anyone know how to protect against known or possible data interferences? Is it possible to have a MAT-like automatic identifier stripper on Whonix-Gateway, on host, on router, etc?
Other than protecting against backdoors, could we have such tools based on some updated database to delete known identifiers from Workstation connections? For example, for protecting anonymity of Whonix users against poorly/not configured (popular) applications (hidden services would be a great example) installed on Workstation. Or in other words protect any idiot’s or newbie’s anonymity, or simply have an additional protection just in case