“Base access decisions on permission rather than exclusion” — Ensure that variables or permissions are initialized to fail-safe default values which can be made more inclusive later instead of opening up the system to everyone including untrusted actors. (See Saltzer and Schroeder's Secure Design Principles)
- Fail-safe Defaults
- Saltzer & Schroeder 1975
- Permission Vs Exclusion
- Guarded Launch
- Defaults: Visibility, Initializations, Permissions, Assets/Actors/Actions
- Open Vs Closed
- Weigh Pros & Cons