Security Invariants or GTFO

The only reasonable numbers are zero, one, and infinity — Bruce J. MacLennan

Security invariants are a pattern for solving problems. We know what we want to be true, with minimal subjectivity. We know how to verify its truth, with minimal interpretation. It may not be true everywhere, but we know everywhere where it isn’t true.

An example of an invariant is:

  • All employee laptop disks are encrypted

--

--

--

Security for the people.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

InfoSecSherpa’s News Roundup for Sunday, April 17, 2022

Dyed Easter eggs. Image by Wokandapix from Pixabay.

Why Companies Should Opt for Integrated Email Archiving Solutions

black and gray digital device

8 Best WordPress Anti-Spam Plugins To Keep Your Website Clean in 2017

{UPDATE} マルバツスピードクイズバトル Hack Free Resources Generator

NFT-KEYS Countdown & Whitelist — Everything you have to know now

{UPDATE} Chuggington ~ ¡Somos los Chucuoperarios! Hack Free Resources Generator

Security in distributed systems -Part 1

Our PL^GNet Staking Contracts Pass Security Review

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Alex Smolen

Alex Smolen

Security for the people.

More from Medium

Quick view of IBM Cloud Pak for Security (CP4S) — the next-genX SOC platform

ATT&CK for Mobile: Reintroduction and 2022 Goals

The Achilles Heel of Account Security Doesn’t Change With ‘Passwordless’ Authentication Schemes.

Hardly-Noticed Cost on Democracy of NOT Having Solid Identity Assurance Platform