When we throw in the concept of "JavaScript Obfuscation", many are quick to dismiss it on the basis of "obscurity isn't security".īut obfuscation is just a small piece of a much bigger picture: source code protection. And this could be the end of our story - but it isn't. Today, this principle is generally accepted and adopted by security engineers. In the NIST Guide to General Server Security, it's clear: "System security should not depend on the secrecy of the implementation or its components." Having a security system rely on secrecy is by no means a good practice. "Security through obscurity is a bad idea" - says every CISO, and with good reason.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |