Back to Security Pattern Catalog




Compartmentalization


Classification Key : Core Security, Information Disclosure

Problem

A security failure in one part of the system allows another part of the system to be exploited. How can the system be protected from this?

Solution

Put each part in a separate security domain. Even when the security of one part is compromised, the other parts remain secure.

Known Uses

qmail has multiple processes contrary to the monolithic sendmail architecture.

Related Patterns

Distributed Responsibility

Source

Viega et. al

Tags

Partition, Compartment, Monolithic System


 

Last modified: May 05, 2012

Conceived and Maintained by: Munawar Hafiz