jspωiki
Security Considerations

Overview#

Security Considerations are Best Practices for Security and Cybersecurity

Security Considerations Best Current Practices (BCP) #

  • BCP 14 requires RFCs to contain a Security Considerations
  • BCP 72 provides Guidelines for Writing RFC Text on Security Considerations

Security Considerations SHOULD take the time to elaborate the security implications of not implementing a MUST or SHOULD, or doing something the specification says MUST NOT or SHOULD NOT

These terms are frequently used to specify behavior with security implications. The effects on security of not implementing a MUST or SHOULD, or doing something the specification says MUST NOT or SHOULD NOT be done may be very subtle. Document authors should take the time to elaborate the security implications of not following recommendations or requirements as most implementors will not have had the benefit of the experience and discussion that produced the specification. RFC 2119

More Information#

There might be more information for this subject on one of the following: