The Principle of Least Privilege

Definition

what is the Principle of Least Privilege (PoLP)?

The Principle of Least Privilege (PoLP) is a security concept that dictates that users, applications, and systems should only have the minimal level of access necessary to perform their tasks.

This reduces the risk of unauthorized access to sensitive data and limits the potential damage from compromised accounts or malicious insiders by minimizing the attack surfaces.

In practice, PoLP involves granting access to resources only for the required duration and ensuring that users or systems cannot access more than what they need as well as performing regular audits, setting access control policies and role-based access control (RBAC) to enforce and maintain the principle of least privilege.

You may also find interesting​

Network Access Control

Privilege Creep

You may also find interesting​

Network Access Control

Privilege Creep

Core Concepts

Sandbox

A Sandbox is an isolated environment where code or software...

Read More

Hashing

Hashing is a cryptographic process that transforms an input ("message")...

Read More

Antivirus

The traditional Antivirus software is designed to detect, block, and...

Read More

MITRE

MITRE is a not-for-profit organization that operates federally funded research...

Read More

MITRE ATT&CK

MITRE is a not-for-profit organization that operates federally funded research...

Read More