security through obscurity

English

Alternative forms

• security by obscurity, security-by-obscurity
• security-through-obscurity

Phrase

security through obscurity

1. (computer security) The habit or practice of relying on a potential attacker's lack of knowledge will maintain security.
   • 1990, W Cattey, The Evolution of turnin A Classroom Oriented File Exchange Service, USENIX Summer Conference:

     This security through obscurity proved adequate for our prototype, but it was unacceptable for a turnin service in wide use.

   • 2006, Harold F. Tipton, Micki Krause, Information Security Management Handbook:

     According to security-through-obscurity advocates, if we carefully hide our gaping vulnerabilities from our enemies, the bad guys will give up in frustration when they cannot easily find holes.

   • 2008, Shon Harris, CISSP All-in-One Exam Guide:

     Things such as security through obscurity become common practices that usually have damaging results.

Antonyms

• Kerckhoffs's principle (in cryptography)
• security by design

See also

• steganography