# Insecure Design

This security risk describes issues whose underlying cause is either the selection of insecure control mechanisms or their complete neglection.


# Background

# Context

This security risk describes design flaws causing security issues. This means the selection of certain processes or workflows which are, as the name already tells, insecure by design. This is to differentiate from implementation flaws, which can happen even if a secure design is chosen.

# Problems

  • An insecure design will never be secure even if implemented perfectly

# Solutions

# Technology

This security risk is about understanding and selecting processes and not selecting correct technologies. Therefore, no framework or library can support this.

Last Updated: 7/3/2022, 3:51:46 PM