在第一部分中,Schneier通过讨论所面对的威胁、攻击的类型、对手(比如,恶意破坏者)和安全的需要,为数字安全这个主题建立了一个上下文。
In the first part, Schneier establishes a context for the topic of digital security by discussing threats, types of attacks, adversaries (i.e., "bad guys"), and the needs for true security.
若要将因攻击成功而导致的损害降到最低,请为您的代码选择安全上下文,以便只向资源授予其完成工作所必需的访问权限。
To minimize the amount of damage that can occur if an attack succeeds, choose a security context for your code that grants access only to the resources it needs to get its work done and no more.
应用推荐