Cybersecurity
Principle of Least Authority
Definition
This is a synonym for the Principle of Least Privilege (PoLP). It is a security principle that states a user or process should only be given the minimum levels of access – or permissions – needed to perform its job functions.
Why It Matters
This principle is fundamental to security design. It limits the damage that can be caused by an accident, error, or malicious actor. If a compromised account only has limited permissions, the attacker's ability to cause harm is also limited.
Contextual Example
A web server process should only have permission to read its own website files. It should not have permission to write to system files or access the database directly. This way, even if the web server is compromised, the attacker cannot easily take over the entire machine.
Common Misunderstandings
- This term is used interchangeably with Principle of Least Privilege.
- It is a key concept in designing secure systems and implementing Zero Trust architectures.