SecPlusTrainer / Glossary / What is secure error handling?
D2 · Threats

What is secure error handling?

Secure error handling shows users generic error messages while logging detailed errors internally — preventing information disclosure through verbose error messages that reveal software internals.
Detailed error messages (stack traces, SQL errors, server versions) help attackers. Never expose technical details to end users. Log detailed errors server-side; show users friendly generic messages.

Related Terms

What is adversarial AI in cybersecurity? What is an aggregation attack? What is anti-forensics? What is an attack surface?
← Back to Glossary Practice Questions →