ORSYS le mag 2025 logo

The training and skills medium

Home > Cybersecurity glossary > Fail-safe mode

Fail-safe mode

Le downgraded mode, also known as emergency mode, fallback mode or fail-safe means an altered state of operation of a computer system, network or application, which is activated automatically or manually in response to an anomaly, failure, attack, overload or any event that compromises its normal operation.

In short, downgraded mode is an emergency configuration to maintain a minimum level of service when optimal operation is no longer possible.

 

🎯 Downgraded mode objectives

  1. Guarantee continuity of service (even partial) :
    Prioritise essential functionalities (e.g. read-only access to a database) to avoid total disruption, which is crucial for sectors such as healthcare (patient monitoring) or finance (critical transactions).
  2. Protecting sensitive data and assets :
    Isolate critical data, activate immediate back-ups or encrypt data flows to limit the risk of leakage or corruption during a crisis.
  3. Facilitating diagnosis and repair :
    Simplify the technical environment (e.g. deactivate non-essential modules) to speed up identification of the causes of a breakdown or attack.
  4. Reinforcing the safety posture :
    Apply stricter temporary measures: multi-factor authentication (MFA), restriction of network access or blocking of vulnerable protocols.
  5. Meeting regulatory obligations :
    Meet legal requirements (RGPD, ISO 27001) by demonstrating proactive incident management and impact minimisation.

 

Causes of downgraded mode

  • Cyber attacks : intrusions, ransomwareattacks DDoSor exploitation of vulnerabilities zero-day.
  • Technical faults hardware failures (servers, storage), software bugs or configuration errors.
  • External events natural disasters (floods), power cuts or network disruptions.
  • Operational overload : traffic peaks (e.g. flash sales on an e-commerce site), excessive demands on resources.
  • Human intervention These may include scheduled maintenance, stress tests or human error (e.g. incorrect handling by an administrator).

 

📝 Features

  • Prioritised critical functions deactivation of non-essential services (e.g. push notifications, analytics).
  • Adjusted performance : limiting bandwidth, reducing the number of simultaneous connections.
  • Adaptive safety activation of firewalls additional, in-depth packet inspection, or blocking suspicious geolocations.
  • Simplified interfaces A streamlined user interface (e.g. a basic HTML version of a website) to reduce the system load.
  • Enhanced logging Detailed event logging for post-incident analysis (security logs, performance metrics).
  • Transparent communication : alert messages to users (e.g. explanatory banners, emails) and dedicated channels for updates.

 

👉 Examples

  • Health A hospital maintains read-only access to medical records during an attack, while suspending online appointment booking.
  • Finance One bank limits international transfers if fraud is suspected, but authorises local withdrawals.
  • Energy : an electricity supplier isolates critical power stations from a compromised network to avoid a total blackout.
  • IoT A smart home system disables connected cameras in the event of a security breach, but retains smoke sensors.
  • Cloud A storage provider switches to degraded mode during a regional outage, redirecting users to geo-redundant backup servers.

 

Best practice

  1. Resilient design :
    • Integrate automatic tipping (failover) and load balancing.
    • Plan redundant architectures (e.g. server clusters, cloud availability zones).
  2. Proactive planning :
    • Identify trigger thresholds (e.g. CPU usage at 95%, number of suspicious connection attempts).
    • Documenting crisis scenarios in a business continuity plan (PCA).
  3. Regular tests :
    • Simulate faults (simulation exercises) chaos engineering) to validate the effectiveness of the downgraded mode.
  4. Transition management :
    • Automate the return to normal after checking the stability of the system.
  5. Raising awareness among stakeholders :
    • Training technical teams and end users in emergency procedures.

Issues and challenges

  • Safety/performance balance A mode that is too restrictive can paralyse the business; a mode that is too permissive exposes residual risks.
  • Maintenance complexity Managing dependencies between services in degraded mode requires precise mapping of the infrastructure.
  • Operating costs Deploying redundant infrastructures or failover solutions involves significant initial investment.
  • User experience Imprecise communication can lead to a loss of confidence (e.g. customers unaware of service limitations).
Back to Glossary

field of training

Cybersecurity

associated training

Systems and network security, level 1

Hacking and security, level 1

Information systems security, summary

BEST

Towards the ORSYS Cyber Academy: a free space dedicated to cybersecurity