Iron-Clad Java

CHAPTER3

Access Control

Access control, or authorization, is the process of limiting users to access only the functionality and data that they are specifically permitted to use. The Principle of Least Privilege, or POLP, defines the essence of what a good access control mechanism should deliver. As Jerome Saltzer stated in 1974, “Every program and every privileged user of the system should operate using the least amount of privilege necessary to complete the job.”

The Principle of Least Privilege applies not just to access control within your application, but as we discuss elsewhere in this book, it should also be applied to every other facet ...

Get Iron-Clad Java now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Iron-Clad Java by Jim Manico, August Detlefsen

CHAPTER3

Access Control

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly