By default, should we develop our applications in minimum or maximum security?

Visual Guard supports both options but :

For security reasons, we strongly recommend maximum security
=> You close all doors at development time and open them one by one with permissions

and NOT to develop in minimum security.
( "open all door" at development time and close them one by one with restrictions)

FYI, Microsoft's security patterns include a strict "nothing-allowed-by-default" policy.

The reason is if you forget to close one door with a restriction, it may generate a security/confidentiality breach in the system:
All users can go through that door.
Whereas forgetting one permission is less critical: you just have to add the permission if/when a user request it.

With Visual Guard dynamic permissions, you can add permissions anytime, even when the application is on production (dynamic permissions do not require any access or change in the code)


Visual Guard