Home
QNX Software Development Platform
QNX SDP is a cross-compiling and debugging environment, including an IDE and command-line tools, for building binary images and programs for target boards running the QNX OS 8.0.
System Security Guide
The QNX System Security Guide is intended for both system integrators who are responsible for the security of a QNX OS system and developers who want to create a QNX OS resource manager free from vulnerabilities.
Security Policies

QNX Momentics IDE User's Guide
This User's Guide describes version 8.0 of the Integrated Development Environment (IDE) that's part of the QNX Tool Suite.
QNX Software Development Platform
QNX SDP is a cross-compiling and debugging environment, including an IDE and command-line tools, for building binary images and programs for target boards running the QNX OS 8.0.
- Quickstart Guide
- System Architecture
  The System Architecture guide accompanies the QNX OS and is intended for both application developers and end-users.
- OS Components & Operations
- Graphics
- Programming
- System Security Guide
  The QNX System Security Guide is intended for both system integrators who are responsible for the security of a QNX OS system and developers who want to create a QNX OS resource manager free from vulnerabilities.
  - Security Matrix
    The following table describes security problems and cyberattacks and the QNX OS security features that can mitigate them.
  - Security Features Overview
  - Security Features for Developers
  - Security Features for System Integrators
  - Security Policies
    - Implementing security policies
    - Using security policy types
    - Security policy language
    - Named range file
    - Monitoring security policy events
    - Developing systems with a security policy
      In most development environments, security policies need to be revised or updated as a project progresses. For example, your initial attempt at a policy may not account for all desired behavior, or you might add a new program or new version of a program.
    - The error file
      The secpolgenerate utility provides the file /dev/secpolgenerate/errors to help you debug broken systems.
    - System monitoring using secpolgenerate
      In addition to development tasks, you can use secpolgenerate in a secure, deployed system to detect errors.
    - Security policy maintenance
      Maintenance tasks for your security policy can include determining whether any generated rules should be edited or removed, manually editing policies for efficiency and simplicity, and reviewing the contents of /dev/secpolgenerate/unused.
    - Reviewing for unnecessary rules
      Although secpolgenerate generates policy rules based on what was needed when the system was run, it's likely not all the rules are appropriate. QNX recommends that you review the security policy specifically to locate processes with abilities that they don't need.
    - State and event files
      The secpolgenerate utility uses files called state and event files to represent the successful or failed use of abilities and paths by processes according to their type.
    - Troubleshooting and frequently asked questions
    - The libsecpol API (secpol.h)
      The libsecpol library API provides functions for systems that use security policies.
    - The libsecpolev API (libsecpolev.h)
      The libsecpolev library API provides functions that allow a program to monitor system trace events that relate to the successful or failed use of privileges covered by security policies.
  - Fortified System Functions
  - Pathtrust
    The pathtrust feature prevents processes from executing untrusted code. If a process is compromised, pathtrust mitigates the threat of the system being further compromised by an attacker using chained-together exploits.
  - Using mkqnximage to Display Security Features
- Utilities & Libraries
- Migrating to QNX OS 8.0
QNX Software in the Cloud
QNX Software in the Cloud enables developers to use the QNX OS in the Amazon cloud environment.
QNX Toolkit for Visual Studio Code
This User's Guide describes the QNX^® Toolkit for Visual Studio Code. The guide introduces you to the QNX Toolkit by explaining the QNX development environment and how to build, run, and debug your QNX^® Operating System (OS) applications and systems.
QNX Hypervisor User's Guide
This User's Guide explains the QNX hypervisor architecture and provides instructions for installing and running a QNX Hypervisor system, changing system components and configuration, and using hypervisor features such as virtual devices (vdevs).
Typographical Conventions, Support, and Licensing
This section describes the typographical conventions used throughout the documentation, explains how to obtain technical support, and provides some information about licensing.

Security Policies

QNX SDP8.0QNX OS System Security GuideAPIConfiguration

Although QNX OS allows a process to set which operations it is permitted to do, a better option is to use the system’s security policies functionality. Security policies provide the following benefits over manually setting process abilities using procmgr_ability():

The location in the path space where a process can attach can only be restricted using a security policy.
A security policy can control a process's ability to perform a ConnectAttach() on a public channel of another process.
If a process uses procmgr_ability() to set its own permissions independent of an individual system, the developer needs to predict what permissions are required, both now and in the future, or use command-line options to discover them. To solve this issue, developers may assign abilities that are too permissive or not needed, which makes the system less secure. Using security policies allows the system integrator to assign only the abilities that the process needs for the specific system.
The secpolgenerate utility that generates and updates security policies can determine which privileges processes require without needing to know what an individual process does.
A system integrator might not be able to examine the arguments to every procmgr_ability() call because he or she does not have access to source code, making it hard to audit a system. Security policies centralize permissions and can be easily audited by the system administrator, even without access to the source code.
Although a system integrator can view the abilities assigned to a process using pidin, he or she only sees the abilities of running processes. A security policy allows the system integrator to view the abilities assigned to all process, including those that are not currently running.
Security policies can be extended with other classes as needed.

Note that some OS components and/or subsystems may have specific security policy practices:


OS component/Subsystem	See:
Screen Graphics Subsystem	Security policies in the Screen Graphics Subsystem Developer's Guide

Page updated: August 11, 2025