Which of the following are goals of an Access Control System in an operating system?

The selection of enforcing least privilege as a goal of an Access Control System highlights a crucial aspect of security within any operating system. The principle of least privilege dictates that users and applications should be granted the minimum levels of access – or permissions – necessary to perform their functions. By adhering to this principle, an operating system can significantly reduce the risk of unauthorized access and potential misuse of sensitive data or system resources. This makes it inherently tougher for both accidental and intentional misuse, because even if a user account is compromised, the attacker is constrained in what they can do.

This principle not only helps in safeguarding sensitive information but also limits the potential impact of malware or attacks, as applications and users can only interact with those resources that they absolutely need. Thus, the implementation of least privilege within an access control system is foundational to maintaining a secure environment and effectively managing permissions in a way that mitigates threats.

Emphasizing least privilege complements other goals of access control systems, such as checking permissions on access and ensuring acceptable usage. However, these latter goals are mechanisms or practices, while least privilege is a fundamental security principle that informs how these mechanisms operate and define user permissions effectively.