least privilege

nounid 3126·updated May 12, 2026

candidate

GlossaryL1 — what DictionaryL2 — how used ThesaurusL3 — relations Universaleverything

The principle that a security architecture should be designed so that each entity is granted the minimum system resources and authorizations that the entity needs to perform its function.

MWE

Classifications

per-axis with provenance

Entity Type

Requirement0%rule-basedmulti_axis_classifier_low_confidence.v1

Sensitivity

—85%llm-generatedllm:claude-haiku-4-5

Information Class

—90%llm-generatedllm:claude-haiku-4-5

Variants

5 surface forms

synonym: sufficient access
alternatephrasing: Least Privilege
plural: least privileges
possessive: least privilege's
pluralpossessive: least privileges'

Framework definitions

9 senses across 8 frameworks

SANS Glossary of Security Terms1 senseview framework →

§1: Least Privilege is the principle of allowing users or applications the least amount of permissions necessary to perform their intended function.

NIST Cybersecurity Framework1 senseview framework →

§1: The principle that a security architecture should be designed so that each entity is granted the minimum system resources and authorizations that the entity needs to perform its function.

FFIEC Cybersecurity Assessment Tool, Baseline, May 20171 senseview framework →

§1: The principle that a security architecture should be designed so that each entity is granted the minimum system resources and authorizations that the entity needs to perform its function.

NISTIR 7298: Glossary of Key Information Security Terms, Revision 22 sensesview framework →

§1: The security objective of granting users only those accesses they need to perform their official duties.
§2 · sense_2_pending_review: The principle that a security architecture should be designed so that each entity is granted the minimum system resources and authorizations that the entity needs to perform its function.

CNSSI-4009 (Glossary of Information Assurance Terms)1 senseview framework →

§1: The principle that a security architecture should be designed so that each entity is granted the minimum system resources and authorizations that the entity needs to perform its function.

NIST SP 800-121 senseview framework →

§1: The security objective of granting users only those accesses they need to perform their official duties.

Information Technology Laboratory Computer Security Resource Center Glossary1 senseview framework →

§1: The principle that a security architecture should be designed so that each entity is granted the minimum system resources and authorizations that the entity needs to perform its function.

Sp 800-12. an introduction to computer security: The nist handbook.1 senseview framework →

§1: The security objective of granting users only those accesses they need to perform their official duties.

Outgoing relationships

term as subject — 0 triples

No outgoing triples

This term is not the subject of any RDF-style relationship yet.

Incoming relationships

term as object — 0 triples

No incoming triples

No other term currently asserts a relationship to this one.