Zafepass Least Privilege Access

The Zafepass Role Based Access Control (RBAC) and Attribute Based Access Control (ABAC) are built-in and tightly paired with the Zafepass Security Policy Engine (SPE), as well as the Least Privilege Access Management.

Privileges don't exist in Zafepass, thus no escalation options. Least Privilege rights are configured from the Provisioning Console (Admin) based on the individual, group or site security policies being met, and Zafepass admins or support staff, can in a few simple steps, configure access to any digital resource.

The principle of least privilege is the idea that at any user, program, or process should have only the bare minimum privileges necessary to perform its function. For example, a user account created for pulling records from a database doesn’t need admin rights (there are no admin rights in Zafepass btw.), while a programmer whose main function is updating lines of legacy code doesn’t need access to financial records. The principle of least privilege can also be referred to as the principle of minimal privilege (POMP) or the principle of least authority (POLA). Following the principle of least privilege is considered a best practice in information security.