Principle: Be Careful

• Identify (& Justify) every trust decision

  • Can be buried in operational logic

• Example: Is Scooter a Member?

  • W3C has Public, Member, and Team web access
  • Originally, Member IP address masks were used
  • Verbal contracts trusted employees to protect info
  • AltaVistaís web crawler was seen as a Member

    • ... And information leaked out to the index!
  • Required coordination of password database, filesystem permissions, and Robot Exclusion file

Previous slide

Next slide

Back to first slide

View graphic version