Which of the following best describes the Principle of Least Privilege in security design patterns?
Think about limiting access to reduce risk.
The Principle of Least Privilege means giving users and systems only the access they need to do their job, nothing more. This limits potential damage if an account is compromised.
What is the main purpose of the Defense in Depth security design pattern?
Think about how multiple protections work together.
Defense in Depth means using several layers of security so if one fails, others still protect the system.
Consider a system that denies access by default unless explicitly allowed. Which security design pattern does this describe?
Think about what happens when no rules apply.
Fail-Safe Defaults means the system denies access unless permission is explicitly granted, reducing accidental exposure.
Which security design pattern focuses on dividing tasks among multiple people to prevent fraud or error?
Think about splitting responsibilities.
Separation of Duties means no single person has control over all parts of a critical process, reducing risk of misuse.
A company designs its system so that even if attackers learn the system's design, they cannot easily exploit it because security does not rely on secrecy of design. Which security design pattern is this?
Consider the idea that security should not depend on hiding how it works.
Open Design means security does not depend on keeping the design secret. This helps ensure security even if attackers know the system.