• Home
• org.sonarsource.sonarlint.core
• sonarlint-core
• 8.19.0.72745
• source code
• defense_in_depth.html

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

clean-code-principles.defense_in_depth.html Maven / Gradle / Ivy

Defense-In-Depth

    Applications and infrastructure benefit greatly from relying on multiple security mechanisms
    layered on top of each other. If one security mechanism fails, there is a high probability
    that the subsequent layers of security will successfully defend against the attack.

A non-exhaustive list of these code protection ramparts includes the following:

    
Minimizing the attack surface of the code
    
Application of the principle of least privilege
    
Validation and sanitization of data
    
Encrypting incoming, outgoing, or stored data with secure cryptography
    
Ensuring that internal errors cannot disrupt the overall runtime
    
Separation of tasks and access to information



    Note that these layers must be simple enough to use in an everyday workflow. Security
    measures should not break usability.