User Tools

Site Tools


principles:principle_of_least_privilege

Principle Of Least Privilege

Variants and Alternative Names

  • principle of minimal privilege
  • principle of least authority

Context

Principle Statement

Every program and every privileged user of the system should operate using the least amount of privilege necessary to complete the job.

Description

In a particular abstraction layer of a computing environment, every module (such as a process, a user, or a program, depending on the subject) must be able to access only the information and resources that are necessary for its legitimate purpose.

Rationale

Strategies

Caveats

See section contrary principles.

Origin

From Jerome H. Saltzer in 1974.

Evidence

Relations to Other Principles

Generalizations

Specializations

Contrary Principles

Complementary Principles

Principle Collections

Examples

Example1:

Description Status

Further Reading

Discussion

Discuss this wiki article and the principle on the corresponding talk page.

principles/principle_of_least_privilege.txt · Last modified: 2017-11-19 21:41 by christian