DefaultDeny

One of the most basic security policies is that of "default deny." Everything that is not explicitly permitted is denied.

The opposite approach is to allow everything which is not prohibited.