Contents
Definition
Nobleware is software that does not facilitate the leakage of information.
Classification
There are different levels of standards for Nobleware that offer different levels of protection against information leakage. Level 1 represents the minimum standards.
Level 1:
- Exposure should...
- be disabled by default
- be interceptable and auditable
- require user's explicit consent
- not be a requirement for advertised functionalities
Level 2:
- All criteria of Level 1 should be satisfied
- Exposure should...
- exclude any traceable and identifying information
- only occur through a user-defined Voucher
- Endpoints should not be embedded in the software
Terminology
Voucher:
An entity who makes determination about the eligibility of software as Nobleware
Endpoint:
Identifier (e.g. domain name, URL, IP) of a device other than user's device that the code or user can interact with
Exposure:
Enabling the transfer of information between user's device(s) and another device
FAQ
What problem does Nobleware solve?
It replaces the risk of trusting software providers with the risk of trusting a
Voucher of the user's choice.
Can closed-source software be Nobleware?
Yes. Any software that meets the required standards may be considered Nobleware regardless of the availability of its source code to the public.
Can cloud software be Nobleware?
Yes. As long as it can be hosted on a cloud environment owned by the user.
Who determines which software is Nobleware?
Any entity may act as a
Voucher and make such determinations. For more information about vouching, visit the Research Solutions at
media.resol.devWhat's the role of NobleWare.org?
NobleWare.org is the steward of the Nobleware definition and standards.