| Read this whole guide offline with no ads, for a low price! |
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31) |
|
| Need more practice? 300 additional Security+ questions! |
| Get It Here! |
|
|
5.4.1.5 Need to Know
Need-to-know is a fundamental security
principle which involves workers having just enough information to
do their jobs. Knowing more than the minimum amount required can
create a security risk due to sensitive data being known to more people
than those who absolutely require it. It’s simply a “numbers”
game – with each additional person having the information, the
probability that it will be exploited increases. Information requests
must be backed by a genuine need-to-know. If the need-to-know is not
there, the request should not necessarily be granted. Be prepared to
justify your requests for information.
 Need to Know
Involves making sure a worker has just enough data to do their job.
|
| If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support! |
|
|
Home -
Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.
|
