SA-17 (7)     Developer Security Architecture And Design | Structure For Least Privilege 

The organization requires the developer of the information system, system component, or information system service to structure security-relevant hardware, software, and firmware to facilitate controlling access with least privilege.

                    
                

            


        

    


    

        

        

            

                
Applicable CNSSI 1253 Baselines

            

        


        

            


                


                    

                        

                            

                                
Confidentiality

                            

                        

                        

                            

                                
    
                                    
  • 
                                        
                                        L
                                        
                                    
    • 
                                    
  • 
                                        
                                        M
                                        
                                    
    • 
                                    
  • 
                                        
                                        H
                                        
                                    
    • 
                                

                            

                            
                        

                    


                    

                        

                            

                                
Integrity

                            

                        

                        

                            

                                
    
                                    
  • 
                                        
                                        L
                                        
                                    
    • 
                                    
  • 
                                        
                                        M
                                        
                                    
    • 
                                    
  • 
                                        
                                        H
                                        
                                    
    • 
                                

                            

                            
                        

                    


                    

                        

                            

                                
Availability

                            

                        

                        

                            

                                
    
                                    
  • 
                                        
                                        L
                                        
                                    
    • 
                                    
  • 
                                        
                                        M
                                        
                                    
    • 
                                    
  • 
                                        
                                        H
                                        
                                    
    • 
                                

                            

                            
                        

                    


                


            


        


        

        
        

        

            

                
Related Controls