Skip to main content

Use the principle of least privilege

Summary

The principle of least privilege must be applied when creating new objects and roles, setting access permissions, and accessing other systems.

Description

Systems should have a set of roles with different levels of privilege to access resources. Users and applications should always have a role with the minimum level of privilege required to execute their functions. A violation of this may become a new vulnerability or leverage for causing a greater impact when exploiting other vulnerabilities.

Supported In

This requirement is verified in following services:

PlanSupported
Machine🟢
Squad🟢
One-Shot🟢

References

Vulnerabilities