Everything not explicitly permitted is forbidden has which of the following kinds of tradeoff?
A.
it improves security at a cost in functionality.
B.
it improves functionality at a cost in security.
C.
it improves security at a cost in system performance.
D.
it improves performance at a cost in functionality.
E.
None of the choices.
Explanation:
“Everything not explicitly permitted is forbidden (default deny) improves security at a cost in
functionality. This is a good approach if you have lots of security threats. On the other hand.,
“”Everything not explicitly forbidden is permitted”” (default permit) allows greater functionality by
sacrificing security. This is only a good approach in an environment where security threats are nonexistent or negligible.”