What is the Principle of Least Functionality?
The principle of least functionality calls for the configuration of systems to provide only essential capabilities. This means that systems are to only have mission-essential software installed, only essential ports open and essential services on. Nothing more nothing less.
Least Functionality vs. Least Privilege
People new to information security and cybersecurity often confuse “least functionality” with “least privilege”. Least functionality deals with how systems are configured, least privilege deals with providing hat users and programs only the necessary privileges to complete their tasks. Least privilege is determining which user account should have which privileges. This involves assigning administrative rights to some users and not others.
www.cubcyber.com
