What explanation will best explain this principle?

Your customer has been told by their auditors that they must implement the principle of least
privilege across all their sensitive data, but they are not sure what this means. What explanation
will best explain this principle?

Your customer has been told by their auditors that they must implement the principle of least
privilege across all their sensitive data, but they are not sure what this means. What explanation
will best explain this principle?

A.
You should grant system privileges to the smallest number of administrators who really need it.

B.
All users will have the least amount of privilege that will allow them to do their jobs.

C.
Access control will be implemented by the least number of administrators.

D.
They should implement a separate set of security procedures to deny access to sensitive data,
and allowthe least number of privileged users to avoid these procedures.

Show Hint

Leave a Reply 3

Your email address will not be published. Required fields are marked *

DNA

DNA

answ: B

https://docs.oracle.com/cd/E35768_07/doc.30/e52990/security.htm
2.4 Following the Principle of Least Privilege
The principle of least privilege states that users should be given the least amount of privilege to perform their jobs. Overly ambitious granting of responsibilities, roles, grants – especially early on in an organization’s life cycle when people are few and work needs to be done quickly – often leaves a system wide open for abuse. User privileges should be reviewed periodically to determine relevance to current job responsibilities

Reply