Dev?t princip? architektury bezpe?nosti
23.11.2005Bruce Byfield:
- Set a security policy for your system and know what's on it
- Actions should be verifiable
- Always give the least privilege practical
- Practice defense in depth
- Auditing the system: keep (and review) system logs
- Build to contain intrusions
- A system is only as strong as its weakest link
- Locking the barn door after the horse is gone is
ineffective
- Practice full disclosure
Zdroj: http://software.newsforge.com/software/05/11/14/2115222.shtmlAutor: JP