Least privilege

The principle of least privilege states that software modules should be given the minimal capabilities needed to accomplish their intended task.

Least privilege includes the principle that trusted programs should voluntarily limit their own sensitive capabilities to be usable in as few areas of the program as possible. Least privilege helps to reduce the damage from software errors or from unexpected side effects. All trusted software should be designed according to the principle of least privilege.