Centralization of sensitive operations

A sensitive operation is an operation that requires privileges. If a sensitive operation is performed by an unprivileged process, it can compromise the security of the system.

Sensitive operations should be restricted to distinct modules (subroutines or separate programs). By breaking down a large program into separate programs, some of the programs will need fewer or no privileges. This lessens the possibility of accidental compromise of the system's security