Page History

Wiki Markup

According to the principle of least privilege, code should not be granted more privileges than those required for performing the particular task. This means that sections of code that require elevated privileges should be kept to a minimum. McGraw and Felten enlist various goals of the principle of least privilege in the context of the Java programming language \[[McGraw 2000|AA. Java References#McGrawBibliography#McGraw 00]\]:

We want to grant each applet or application the minimum privileges it needs.
Wiki Markup
Rather than assigning a given applet's \[or application's\] entire collection of privileges to all of its classes, we want each class to get just what it needs.
We want a class's privileges to be "turned off" except for brief periods of time.
We even want to reduce the privileges of some of the built-in system classes.

...

Wiki Markup

\[[API 2006|AA. Java References#APIBibliography#API 06]\] Class {{java.security.AccessController}}
\[[McGraw 2000|AA. Java References#McGrawBibliography#McGraw 00]\]
\[[MITRE 2009|AA. Java References#MITREBibliography#MITRE 09]\] CWE [272|http://cwe.mitre.org/data/definitions/272.html]

...

Space shortcuts

Page tree

Versions Compared

Old Version 53

New Version 54

Key