I read this interesting entry On Chains, Meshes, and Defense in Depth yesterday.
A mesh design means that you use several security mechanisms for defending your system. However, you design them in such a way that the only by breaking all of them you can break into the system. There were suggestions that this was hard to achieve outside cryptography. Somebody mentioned that it is also possible in other security settings as well. However, nobody came up with any example of a mesh design outside cryptography.
So I have been thinking about this and I think replication is sort of mesh design for availability. You have to compromise all of the replicated servers in order to "break" the system. What do you think about that?
No comments:
Post a Comment