Which principle ensures the system only provides access to essential capabilities?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Study for the CompTIA SecurityX Test. Equip yourself with comprehensive flashcards and multiple choice questions that include hints and explanations. Gear up for your certification exam!

Multiple Choice

Which principle ensures the system only provides access to essential capabilities?

The principle being tested is that a system should provide only the features and capabilities that are necessary to perform its legitimate tasks. This approach limits what the system exposes, reducing the attack surface and opportunities for misuse or exploitation. In practice, it means disabling or removing unused services, protocols, and software, and granting only the minimal set of permissions required for each function or user. By keeping the feature set tight, you make it harder for attackers to find a weakness to exploit and you simplify security management.

This idea is distinct from a few other security concepts. For example, a rating like EAL measures the level of assurance or confidence in how well a product is designed and tested, not how many features it exposes. A trusted OS refers to an operating system built with strong security properties, but it doesn’t automatically enforce limiting functionality to the minimum needed. BIOS relates to firmware that initializes hardware at boot and isn’t about restricting features or capabilities in the running system.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy