principles:principle_of_least_privilege
Table of Contents
Principle Of Least Privilege
Variants and Alternative Names
- principle of minimal privilege
- principle of least authority
Context
Principle Statement
Every program and every privileged user of the system should operate using the least amount of privilege necessary to complete the job.
Description
In a particular abstraction layer of a computing environment, every module (such as a process, a user, or a program, depending on the subject) must be able to access only the information and resources that are necessary for its legitimate purpose.
Rationale
Strategies
Caveats
See section contrary principles.
Origin
From Jerome H. Saltzer in 1974.
Evidence
Relations to Other Principles
Generalizations
Specializations
Contrary Principles
Complementary Principles
Principle Collections
Examples
Example1:
Description Status
Further Reading
Discussion
Discuss this wiki article and the principle on the corresponding talk page.
principles/principle_of_least_privilege.txt · Last modified: 2021-10-18 22:16 by christian