Security by Obscurity

• is the only security
• is not real obscurity
• prevents accurate determination of a product's security
• is given irrational confidence

• helps to avoid vulnerability targetting (hiding equipment and versions)
• complements other measures
• hinders social engineering attacks (e.g. hide hostnames behind firewall)
• is used to protect other measures such as intrusion detection

• PreviousSecurity Strategies
• Contents
• NextFirewall Limitations

 Last change: Monday, June 21, 2004 3:47 pm
 Unless otherwise expressly stated, all original material on this page created by Diomidis Spinellis is licensed under a Creative Commons Attribution-Share Alike 3.0 Greece License.