A-Z Popular Blog Security Search »
Information Security
 Advertisements
Related Guides
Information Security
top   »  information technology   »  information security   »  vulnerability   »  backdoor

5 Examples of a Backdoor

 , updated on September 23, 2017
A backdoor is a means of accessing information resources that bypasses regular authentication and/or authorization. Backdoors may be secretly added to information technology by organizations or individuals in order to gain access to systems and data. Backdoors can also be an open and documented feature of information technology. In either case, they can potentially represent an information security vulnerability. The following are common examples of a backdoor.

Hardware

Hardware backdoors in computing equipment such as CPUs, data storage, peripheral devices or networking equipment. A backdoor may be placed in the software drivers for hardware. They can also be hardwired into devices and can potentially include a microprocessor and networking capabilities dedicated to the backdoor.

Operating Systems

Operating systems often include remote administration tools that allow administrators and vendors to support users. These are typically secured but are an attractive target for malicious use because they are designed to gain control of a machine remotely. As such, administrators will often disable such tools in a secured environment.

Applications & Systems

Applications and systems may have backdoors secretly installed to achieve malicious objectives. Backdoors are also openly installed for administrative and integration purposes. When you install software you are placing trust in a vendor that they haven't added insecure or malicious backdoors that will leave you vulnerable. In the case of open source, it is possible to audit source code to detect backdoors.

Default Passwords

Default passwords that are available when hardware, operating systems or software is first installed is viewed as a backdoor.

APIs, Services & Components

It is possible for backdoors to end up in software due to the use of external APIs, services and components. Information security policies at banks and other security focused organizations may review all APIs before they can be used. In other industries, it may be common to include external code and services without a security review.
Overview: Backdoor
Type
Definition
A means of accessing information resources that bypasses regular authentication and/or authorization.
Related Concepts
Information »
Authentication »
Information Technology »
Hardwired »
Operating Systems »

Information Security

This is the complete list of articles we have written about information security.
Audit Trail
Canary Trap
Confidential Information
Critical Infrastructure
Cryptographic Keys
Cryptographic Salt
Cryptography
Cybersecurity Risk
Data Breach
Data Remanence
Data Room
Data Security
Deep Magic
Defense In Depth
Degaussing
Digital Identity
Failure Of Imagination
Geofencing
Hardening
Honeypot
Incident Response
IoT Security
Key Stretching
Network Security
Non-repudiation
Nonce
Operations Security
Overlay Network
Password Entropy
Password Fatigue
Proof Of Work
Sandbox
Secure Code Review
Security As A Service
Security Controls
Zero-day
More ...
If you enjoyed this page, please consider bookmarking Simplicable.
 
Cite »

Security vs Privacy

The relationship between security and privacy.

Hardening

An overview of technology hardening.

Deep Magic

An overview of deep magic, a technology term.

Defense In Depth

An overview of defense In depth.

Encryption Examples

A definition of encryption with examples.

Canary Trap

A definition of canary trap with an example.

Honeypot

A definition of honeypot with examples.

Security Through Obscurity

A definition of security through obscurity with an example.

Tokens

A definition of token with examples.

Data Backup

Several data backup techniques compared.

Sandbox Definition

An overview of sandboxes. An information security technique.

Strong Password

A few examples of what makes a password strong or weak.

Zero-day Vulnerability

An overview of zero-day vulnerability.

Personal Information

A definition of personal information with examples.

Cybersecurity

A definition of cybersecurity with examples.

Public Network

A definition of public network with examples.

Sandbox

A definition of sandbox with examples.

Trending

The most popular articles on Simplicable in the past day.

New Articles

Recent posts or updates on Simplicable.
Site Map
Coding
Communication
Compliance
Networking
Computing
Creativity
Cryptography
Data
Design
Design Thinking
Governance
Information Security
Information Technology
Infrastructure
Knowledge Management
Management
Metrics
Organizational Culture
Problem Solving
Productivity
Project Management
Quality
Risk Management
Science
More ...
© 2010-2023 Simplicable. All Rights Reserved. Reproduction of materials found on this site, in any form, without explicit permission is prohibited.

View credits & copyrights or citation information for this page.

Home About     Privacy Policy     Cookies Terms of Use     Contact Us Search


Cookies help us deliver our services. You have choices regarding these cookies. Please visit our privacy policy, cookie policy and consent tool to learn more.


Copyright 2002-2023 Simplicable. All rights reserved. This material may not be published, broadcast, rewritten, redistributed or translated. Report violations here.