principles:principle_of_least_privilege
This is an old revision of the document!
Table of Contents
Principle Of Least Privilege
The original formulation is the following: every program and every privileged user of the system should operate using the least amount of privilege necessary to complete the job. From Jerome H. Saltzer in 1974.
Variants and Alternative Names
- principle of minimal privilege
- principle of least authority
Context
Principle Statement
In a particular abstraction layer of a computing environment, every module (such as a process, a user, or a program, depending on the subject) must be able to access only the information and resources that are necessary for its legitimate purpose.
Description
Rationale
Strategies
Caveats
See section contrary principles.
Origin
Evidence
Relations to Other Principles
Generalizations
Specializations
Contrary Principles
Complementary Principles
Principle Collections
Examples
Example1:
Description Status
Further Reading
Discussion
Discuss this wiki article and the principle on the corresponding talk page.
principles/principle_of_least_privilege.1620764261.txt.gz · Last modified: 2021-05-11 22:17 by 95.216.157.239