Security should ALWAYS be an all or nothing issue.
True for trusted systems only
True for untrusted systems only
None of the choices.
Security should not be an all or nothing issue. The designers and operators of systems should
assume that security breaches are inevitable in the long term. Full audit trails should be kept of
system activity, so that when a security breach occurs, the mechanism and extent of the breach
can be determined.