A SAML Framework for Attribution Delegation and Least Privilege

IDA document: D-4170
Type: Documents
Division: Information Technology and Systems Division
Delegation, Attribution and Least Privilege are an implicit part of information sharing. In operating systems like Windows there is not security enforcement for code running in kernel mode and therefore such code always runs with maximum privileges. The principle of least privilege therefore demands the use of a user mode solution if the two solutions provide the same results... .