Toby Murray writes: >I'm trying to propose a criterion that can be used to >determine whether a system is secure from a particular stakeholder's >point of view. POLA is not a definition of security; it is a means to an end. The same goes for your proposed principle.