====== Principle Of Least Privilege ======

===== Variants and Alternative Names =====

  * principle of minimal privilege 
  * principle of least authority

===== Context =====
  * [[contexts:Security]] 


===== Principle Statement =====

Every program and every privileged user of the system should operate using the least amount of privilege necessary to complete the job. 


===== Description =====

In a particular abstraction layer of a computing environment, every module (such as a process, a user, or a program, depending on the subject) must be able to access only the information and resources that are necessary for its legitimate purpose.

===== Rationale =====


===== Strategies =====
/*How to make a design more compliant to this principle*/

===== Caveats =====

See section [[#contrary principles]].


===== Origin =====

From Jerome H. Saltzer in 1974.

===== Evidence =====
/* Comment out what is not applicable and explain the rest: */

/*  * [[wiki:Proposed]]*/
/*  * [[wiki:Examined]]*/

  * [[wiki:Accepted]]

/*  * [[wiki:Questioned]]*/

===== Relations to Other Principles =====

==== Generalizations ====

==== Specializations ====

==== Contrary Principles ====

==== Complementary Principles ====

==== Principle Collections ====


===== Examples =====

==== Example1:  ====

===== Description Status =====
/* Choose one of the following and comment out the rest: */
[[wiki:Stub]]
/*[[wiki:Incomplete]]*/
/*[[wiki:Complete]]*/

===== Further Reading =====


===== Discussion =====

Discuss this wiki article and the principle on the corresponding [[talk:principles:Principle Of Least Privilege|talk page]].