Home › BCA Cyber Security › cybersecurity › Cybersecurity Fundamentals › PRINCIPLE OF LEAST PRIVILEGE states that
PRINCIPLE OF LEAST PRIVILEGE states that
Aevery user should be administrator for convenience
Busers get only the minimum permissions they need
Call passwords should be stored in plaintext
Dlogs should be deleted regularly
Answer & Solution
Correct answer: B. users get only the minimum permissions they need
1. LEAST PRIVILEGE: grant users (and processes) only the permissions strictly necessary for their function.
2. Benefits: minimises blast radius of compromised accounts, reduces accidental damage, simplifies auditing.
3. Implementation: role-based access control (RBAC), separation of duties, time-bound elevated privileges (just-in-time access).
4. Modern extension: ZERO TRUST architecture — never trust, always verify.
5. Other options describe ANTI-patterns that lead to breaches.
_Source: NIST CSF v1.1, PR.AC-4 (Access permissions managed by least privilege) + general security best practice._
Related questions
A HASH FUNCTION (e.g. SHA-256) used for password storage should beWhich of the following is a TYPE of MALWARE that encrypts files and demands payment for thA SECURITY INCIDENT is BEST defined asDEFENSE IN DEPTH is a strategy thatWhich authentication method requires the user to present at least TWO different categoriesRisk is commonly expressed as a function ofWithin the RESPOND function, ANALYSIS of detected incidents and COMMUNICATIONS with stakehWhich NIST CSF function ensures that PLANS to RESTORE capabilities or services are execute