Promptles
Security

Principle of Least Privilege

intermediate

Definition

Give every person, app, and service the smallest set of permissions they need to do their job. And nothing more. The point is to limit the damage if any one of them ever gets hacked or makes a mistake. A compromised account can only break what it was allowed to touch.

In the wild

A new intern needs to read the company's sales reports, so she's given read-only access. She doesn't get permission to delete or change anything, even though her teammates do. If her account is ever stolen, the attacker gets the same harmless read-only window. They can't delete or destroy anything.

More from Security