While reading the OWASP site, I stumbled upon pages
www.owasp.org/index.php/Category:Countermeasure
and开发者_如何学C
www.owasp.org/index.php/Category:Control.
My question is simple: what's the difference between the two?
I'm sure I could see it if there was more information, but right now they both seem to state that they are something that are used to detect, deter, or deny attacks.
It is apparent from the supplied links, that at least OWASP considers them to be synonyms.
"Category:Control
This category is a parent category used to track categories of controls (or countermeasure, security mechanisms)."
精彩评论