How Can We Help?
The security objective of granting users only those accesses they need to perform their official duties.
SOURCE: SP 800-12
The principle that a security architecture should be designed so that each entity is granted the minimum system resources and authorizations that the entity needs to perform its function.
SOURCE: CNSSI-4009