dhh1128 / intent

the intent formal language
https://intentlang.org
2 stars 1 forks source link

security: identify what data needs to be purged with exception handler or other errors #132

Open dhh1128 opened 8 years ago

dhh1128 commented 8 years ago

Should some sensitive data in memory or on disk be overwritten/shredded if an exception or error occurs?

If we run out of disk space and need to stop logging, we should probably stop the rest of the app as well, because continuing to run without a log creates a security problem.

Such issues need to be called out in a "what could go wrong" property of a function or feature, and each needs to be hyperlinked to one or more remediation/notification procedures.