Security domain-name
Данные и риски
| Данные | Риск | Контроль |
|---|---|---|
| PII/domain data | leakage | permissions, audit, minimization |
Controls
- authentication через identity;
- authorization по permissions matrix;
- audit для critical actions;
- rate limits;
- input validation;
- secrets только в env/secret store.
Abuse cases
- horizontal privilege escalation;
- replay/idempotency abuse;
- unsafe export;
- event payload leakage.