The principle applies also to a personal computer user who usually does work in a normal user account, and opens a privileged, password protected account only when the situation absolutely demands it. Any other privileges, such as installing new software, are blocked.
Principle of least privilege policy install#
For example, a user account for the sole purpose of creating backups does not need to install software: hence, it has rights only to run backup and backup-related applications. The principle means giving any users account or processes only those privileges which are essentially vital to perform its intended functions. In information security, computer science, and other fields, the principle of least privilege ( PoLP), also known as the principle of minimal privilege ( PoMP) or the principle of least authority ( PoLA), requires that in a particular abstraction layer of a computing environment, every module (such as a process, a user, or a program, depending on the subject) must be able to access only the information and resources that are necessary for its legitimate purpose. JSTOR ( April 2019) ( Learn how and when to remove this template message).Unsourced material may be challenged and removed.įind sources: "Principle of least privilege" – news Please help improve this article by adding citations to reliable sources. This article needs additional citations for verification.
0 kommentar(er)
