Back to Security Pattern Catalog
: Core Security, Elevation of Privilege
A security failure in a compartment can change any data in that compartment. A compartment
has both an interface that is at risk of a security failure, and data that needs to be secure.
How can this be achieved?
Partition responsibility across components such that the components that are likely to fail do not
have critical data. Assign responsibilities in such a way that several of them need to fail in order for the whole system to fail.
qmail programs run under separate users.
Compartmentalization, Trust Partitioning
Veryard et. al.
Partition, Compartment, UID
Last modified: May 05, 2012
and Maintained by: Munawar Hafiz