I. Overview

“Because we can’t rely on human perfection, we must assume that any possible bad action or outcome can happen. Therefore, we recommend designing the system to minimize or eliminate the impact of these bad actions”

II. Getting Started

What is least privilege

The principle of least privilege refers to an information security concept in which a user is given the minimum level of access - or permissions - needed to perform their job functions. One of a best practice is “Deny by default”.

The model can by applied to applications, systems or connected devices that require privileges or permissions to perform a required task. Effective least privilege enforment requires a way to centrally manage and secure privileged credentials.

Reference