Security Strategies

• Least priviledge: don't allow more than you need
• Defense in depth: have multiple security mechanisms
• Diversity of defence: have different security mechanisms
• Choke point: force attackers to use a narrow channel
• Weakest link: don't divert your attention from them
• Fail safe stance: fail in a way denying access
• Default permit (or deny) stance
• Universal participation: one opt-out can endanger all the rest
• Simplicity

• PreviousFirewall Purpose
• Contents
• NextSecurity by Obscurity

 Last change: Monday, June 21, 2004 3:47 pm
 Unless otherwise expressly stated, all original material on this page created by Diomidis Spinellis is licensed under a Creative Commons Attribution-Share Alike 3.0 Greece License.