c# - Do non-existing private variables make python less secure than C#?

问题描述

I am currently learning C# in a course and came across a discussion point due to me having python background. Regarding that discussion I came upon the question: How secure is python compared to C#?

So I know that in python there's the convention of "We're all responsible users" and that no class, variable or method is technically really private, unlike in C# where you have the functionality to make public, protected and private instances.

If I write this in C#:

// File: Circle.cs
public class Circle() {
    private int _Radius;
    public int Radius { get => _Radius; set => _Radius = value}

    public Circle(int r) 
    { 
        Radius = r;
    }
}

// File: Program.cs
public static void Main() {
    Circle c1 = new Circle(1);
    c1.Radius = 2; // Possible, Radius is 2
    c1._Radius = 3; // Not possible outside of Circle.cs -> Compilation error
}

It would sort of compare to this in Python:

# File: circle.py
class Circle:
    def __init__(self, radius):
        self.__Radius = radius
    def __getR(self):
        return self.__Radius
    def __setR(self, radius):
        self.__Radius = radius
    r = property(__getR, __setR)
# File: main.py
from circle import Circle
c1 = Circle(1)
c1.r = 2 # Radius is set to 2
c1.__Radius = 3 # Radius is still 2
c1._Circle__Radius = 4 # Radius is 4

The above serves as a demonstration of the functional differences of Python and C#.

My question is: Does the lack of actual private variables make python less secure compared to C#?

After all. If I would write a cryptographic library of some sort, it would make sense to program that in C# out of pure security concerns, wouldn't it? I wouldn't be able (to my knowledge) to hinder anyone abusing the private variables I provide in said library when programmed in python, whereas in C# I can create a library which does not give access to internally used private variables when used in another program.

If I would program said library in python, would that library be any less secure than the C# one?

I'm neither against python nor against C#, I'm simply curious from an enthusiasts standpoint why C# just seems more secure with it's private instances whereas python plays the "be responsible" card and leaves it out almost entirely.

While researching about this, I stumbled upon this question, in which "Reflection" is explained a little. Reflection

I am not referring to unit testing in this question, where you could assume that you have access to the source code anyways and could just change the property to public.

To elaborate:

If you have a compiled library A in C# and you have a compiled library B in Python, how do these 2 compare in terms of security or privacy when trying to access the private data?

标签： c#pythonsecurity