What Are White List and Black List

נכתב על ידי ליאור לביא, עודכן בתאריך 29/10/2023

The terms White List and Black List are used to describe the way permissions are granted to a system.

Black List

Using a black list means that the default system behavior is to grant permissions to all users except those listed on the black list. For example, "Access to the system is allowed for all users except those coming from the IP address range 172.21.10.100 to 172.21.10.200". The purpose of this access method is to allow access to all who approach the system, except those identified as undesirable.

White List

Using a white list means blocking all system requests except those coming from approved users. For example, "Access to the system is open only to users coming from the IP address range 172.21.10.100 to 172.21.10.200". This policy is considered restrictive and allows precise control over system access. In Salesforce, for example, this method can be used to allow access only from organizational IP addresses by defining the ranges from which the organization connects to the internet for each profile.