It is unfortunate that talking about security is still deemed dangerous. The idea is that if you do not share the information it will be harder to find the security hole. The opposite is true as well. By not talking about how things work, people start assuming. This inevitably leads to many problems and is often the start of many security problems that go undetected.
Let’s have a look at a very concrete example.
Not so long ago, the one and only barrier grant someone access to an application was the typical “user