security by obscurity


security by obscurity

An attempt to increase security by keeping elements of a security strategy secret; for example, concealing the specific algorithm implemented in a cryptographic system or keeping a password secret. Quite often, security by obscurity efforts can be easily defeated and may provide a misleading sense of security. Contrast with Kerckhoffs' law. See OPSEC.