Back to Security Pattern Catalog

Distributed Responsibility

Classification Key : Core Security, Elevation of Privilege


A security failure in a compartment can change any data in that compartment. A compartment has both an interface that is at risk of a security failure, and data that needs to be secure. How can this be achieved?


Partition responsibility across components such that the components that are likely to fail do not have critical data. Assign responsibilities in such a way that several of them need to fail in order for the whole system to fail.

Known Uses

qmail programs run under separate users.

Related Patterns

Compartmentalization, Trust Partitioning


Veryard et. al.


Partition, Compartment, UID


Last modified: May 05, 2012

Conceived and Maintained by: Munawar Hafiz