Difference between revisions of "Use encapsulation"

From OWASP
Jump to: navigation, search
Line 7: Line 7:
 
==Examples ==
 
==Examples ==
 
* Design: Separate internal administrator's functions from external users' functions   
 
* Design: Separate internal administrator's functions from external users' functions   
* Implementation: Hidde internal details of a class, including data and methods, using private access modifier.
+
* Implementation: Hide internal details of a class, including data and methods, using private access modifier.
 
+
==Related Principles==
+
 
+
==Related Threats==
+
 
+
==Related Attacks==
+
 
+
==Related Vulnerabilities==
+
 
+
==Related Countermeasures==
+
 
+
==Categories==
+
 
+
{{Template:Stub}}
+

Revision as of 09:46, 14 June 2006

This is a principle or a set of principles. To view all principles, please see the Principle Category page.

Description

Draw strong boundaries among application elements, including modules, functions and data, to limit the impact of potential attacks.

Examples

  • Design: Separate internal administrator's functions from external users' functions
  • Implementation: Hide internal details of a class, including data and methods, using private access modifier.