Answer-first summary for fast verification
Answer: Principle of least privilege
The principle of least privilege means giving a user account only those privileges which are essential to perform its intended function. For example, a user account for the sole purpose of creating backups does not need to install software; hence, it has rights only to run backup and backup-related applications. This security best practice minimizes the attack surface and reduces the risk of unauthorized access or accidental misuse of permissions.
Author: Ritesh Yadav
Ultimate access to all questions.
When giving permission to users via the AWS Identity and Access Management tool, which of the following principles should be applied when granting permissions?
A
Principle of least privilege
B
Principle of greatest privilege
C
Principle of most privilege
D
Principle of lower privilege
No comments yet.