Jump to content

Anderson's rule (computer science)

Add links
From Wikipedia, the free encyclopedia

This is the current revision of this page, as edited by RossJohnAnderson (talk | contribs) at 11:15, 5 May 2021 (This page misrepresented what I said; this edit is by Ross J. Anderson!). The present address (URL) is a permanent link to this version.

(diff) ← Previous revision | Latest revision (diff) | Newer revision → (diff)

In the field of computer security, Anderson's rule refers to a principle formulated by Ross J. Anderson: systems that handle sensitive personal information involve a trilemma of security, functionality and scale, of which you can choose any two. A system that has information on many data subjects and to which many people require access is hard to secure unless its functionality is severely restricted. If it has rich functionality, you may have to restrict the number of people with access, or accept that some information will leak.[1]

References

[edit]
  1. ^ Guardian newspaper article on a security breach, in which Anderson's Rule is formulated
Retrieved from "https://en.wikipedia.org/w/index.php?title=Anderson%27s_rule_(computer_science)&oldid=1021558418"