This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
Principle of least privilege
Principle of least privilege

Version management

Difference between version and

At line 1 added 23 lines
!!! Overview[1]
The original formulation is from Jerome Saltzer:\\
''Every program and every privileged user of the system should operate using the least amount of [privilege] necessary to complete the job.''
\\— Jerome Saltzer, Communications of the ACM
In information security, computer science, and other fields, the principle of least [privilege] (also known as the principle of minimal privilege or the principle of least authority) requires that in a particular abstraction layer of a computing environment so that every module (such as a process, a user, or a program, depending on the subject) must be able to access only the information and resources that are necessary for its legitimate purpose.
[{$pagename}] is closely related to other efforts such as:
* [Law of Minimal Disclosure For A Constrained Use]
* [Need to know]
* [Privacy by Design]
* [ISO/IEC 29100|ISO 29100]
[{$pagename}] should be considered as a [Law] when designing any system.
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
----
* [#1] - [Principle of least privilege|Wikipedia:Principle_of_least_privilege|target='_blank'] - based on data observed:2015-09-29
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop