Principle of Least Privilege

aws/security aws/concept

💡 Definition

The Principle of Least Privilege is a security best practice that states a user, program, or process should have only the bare minimum privileges necessary to perform its function.

🔑 Key Concepts

⚙️ How it Works

Instead of giving a developer "AdministratorAccess" (full control) just to upload a file to S3, you create a specific IAM Policy that allows only s3:PutObject on that specific bucket.

🎯 Use Cases

💰 Pricing Model

📝 Exam Tips (CLF-C02)


See Also: * IAM * IAM Policy