Difference between revisions of "Principal"

From MgmtWiki
Jump to: navigation, search
(Created page with " “security principal”? A principal is any active entity in system with access privileges that are in any way distinct from some other component it talks to. Corollary: a...")
 
Line 1: Line 1:
 +
==Full Title or Meme==
 +
An entity represented as a running process in a computer system.
  
“security principal”? A principal is any active entity in system with access privileges that are in any way distinct from some other component it talks to. Corollary: a principal is defined by its domain of access (the set of things it has access to). Domains of access can, and often do, overlap, but that they are different is what makes a security principal distinct. Peer identities that are at the same level, but distinct identities, are distinct security principals, such as separate apps in iOS, Android, and the Windows App Store. Conversely, processes on the Windows desktop all run as the same identity and have no protection from one another, and thus are all a single security principal.<ref>https://www.leviathansecurity.com/blog/the-calculus-of-threat-modeling[http://www.example.com link title]</ref>
+
==Context==
 +
[[Principal]]s are distinct from [[User]]s or [[Subject]]s in that it only exists within a digital computer. I often has a link to a user, but not always
 +
 
 +
==Problems==
 +
 
 +
==Solutions==
 +
 
 +
Crispin Cowan defined a principal in the context of a “security principal”? A principal is any active entity in system with access privileges that are in any way distinct from some other component it talks to. Corollary: a principal is defined by its domain of access (the set of things it has access to). Domains of access can, and often do, overlap, but that they are different is what makes a security principal distinct. Peer identities that are at the same level, but distinct identities, are distinct security principals, such as separate apps in iOS, Android, and the Windows App Store. Conversely, processes on the Windows desktop all run as the same identity and have no protection from one another, and thus are all a single security principal.<ref>https://www.leviathansecurity.com/blog/the-calculus-of-threat-modeling[http://www.example.com link title]</ref>
 +
 
 +
==References==
 +
 
 +
[[Category:Glossary]]

Revision as of 11:48, 5 July 2018

Full Title or Meme

An entity represented as a running process in a computer system.

Context

Principals are distinct from Users or Subjects in that it only exists within a digital computer. I often has a link to a user, but not always

Problems

Solutions

Crispin Cowan defined a principal in the context of a “security principal”? A principal is any active entity in system with access privileges that are in any way distinct from some other component it talks to. Corollary: a principal is defined by its domain of access (the set of things it has access to). Domains of access can, and often do, overlap, but that they are different is what makes a security principal distinct. Peer identities that are at the same level, but distinct identities, are distinct security principals, such as separate apps in iOS, Android, and the Windows App Store. Conversely, processes on the Windows desktop all run as the same identity and have no protection from one another, and thus are all a single security principal.[1]

References

  1. https://www.leviathansecurity.com/blog/the-calculus-of-threat-modelinglink title