SecPlusTrainer / Glossary / What is fail-open vs fail-closed in security?
D3 · Architecture

What is fail-open vs fail-closed in security?

Fail-closed: device blocks all traffic if it fails — maximizes security, risks availability. Fail-open: device passes all traffic if it fails — maintains availability, risks security.
Security-critical devices (IPS, firewalls) should fail-closed. Availability-critical devices may need to fail-open. IDS should fail-open (it's passive). IPS decision depends on environment risk tolerance.

Related Terms

What is a Web Application Firewall (WAF)? What is BeyondCorp and zero trust? What is BYOD and its security risks? What is a captive portal?
← Back to Glossary Practice Questions →