nSecurity Principles to Live By – cont.:
nAssume external systems are insecure
nPlan on failure
nWhat happens if the firewall is breached?
Death,
taxes and computer system failure are all inevitable
to some degree. Plan for the event.
nFail to a secure mode
nIf the attacker knows that he can make your code fail,
he can bypass security mechanisms because your
failure mode is insecure