Definition Edit

An open security environment is an environment that includes those systems in which one of the following conditions holds true:

a. Application developers (including maintainers) do not have sufficient clearance or authorization to provide an acceptable presumption that they have not introduced malicious logic.
b. Configuration control does not provide sufficient assurance that applications are protected against the introduction of malicious logic prior to and during the operation of system applications.

Source Edit

  • Turquiose Book: A Guide to Understanding Information System Security Officer Responsibilities for Automated Information Systems (NCSC-TG-004-88 Oct. 16, 2002) (full-text).

Ad blocker interference detected!

Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.