Difference between revisions of "Principal"

From MgmtWiki
Jump to: navigation, search
(Created page with " “security principal”? A principal is any active entity in system with access privileges that are in any way distinct from some other component it talks to. Corollary: a...")
(No difference)

Revision as of 12:43, 5 July 2018

“security principal”? A principal is any active entity in system with access privileges that are in any way distinct from some other component it talks to. Corollary: a principal is defined by its domain of access (the set of things it has access to). Domains of access can, and often do, overlap, but that they are different is what makes a security principal distinct. Peer identities that are at the same level, but distinct identities, are distinct security principals, such as separate apps in iOS, Android, and the Windows App Store. Conversely, processes on the Windows desktop all run as the same identity and have no protection from one another, and thus are all a single security principal.[1]
  1. https://www.leviathansecurity.com/blog/the-calculus-of-threat-modelinglink title