安全控制的透明性!!!
2008-11-23 16:04
120 查看
The security controls and mechanisms that are in place must have
a degree of transparency. This enables the user to perform tasks and duties
without having to go through extra steps because of the presence of the
security controls. Transparency also does not let the user know too much
about the controls, which helps prevent him from figuring out how to
circumvent them. If the controls are too obvious, an attacker can figure
out how to compromise them more easily.
a degree of transparency. This enables the user to perform tasks and duties
without having to go through extra steps because of the presence of the
security controls. Transparency also does not let the user know too much
about the controls, which helps prevent him from figuring out how to
circumvent them. If the controls are too obvious, an attacker can figure
out how to compromise them more easily.
相关文章推荐
- 如何安全地跨窗体调用Timer控件 从一个窗体调用控制另外一个窗体的控件
- 【Redis】redis开机自启动、设置守护进程、密码设置、访问权限控制等安全设置(redis默认端口6379)
- DNS服务正向、反向解析区域,主/从区域数据库复制,子域授权及基本安全控制
- Web Service 那点事儿(3)—— SOAP 及其安全控制
- redis密码设置、访问权限控制等安全设置
- 用 Apache 和 Subversion 搭建安全的版本控制环境
- solr入门之solr安全控制的研究和实践(二)
- 正向解析区域、反向解析区域;主/从;子域;基本安全控制
- 用 Apache 和 Subversion 搭建安全的版本控制环境
- linux下使用apache+svn+ssl配置安全版本控制服务
- 用 Nginx 来做私有 docker registry 的安全控制
- Linux安全访问控制模型
- (Portal 开发读书笔记)编程式安全控制
- 数据库应用安全:如何平衡加密与访问控制
- 用 Apache 和 Subversion 搭建安全的版本控制环境
- 流媒体直播防盗链安全控制
- MongoDB 3.0+ 安全权限访问控制
- 用 Apache 和 Subversion 搭建安全的版本控制环境[转] 不全版