Privilege

Privilege is the term used throughout most (if not all) applications and systems to denote the level of operator permission, or authority. Privilege can be established at the file or folder (directory) level and can allow (say) Read only access, but prevent changes. Privileges can also refer to the extent to which a user is permitted to enter and confirm transactions / information within the system. In many systems, the security features will offer the ability to implement dual control or automatic escalation to the next 'highest' level, to assist with Information Security compliance and best practice.

Privileges are established at 2 levels, firstly at the network level, where the level of privilege is established with respect to general access rights and permissions; secondly, at the application level where the user's job function and responsibility will determine the level of privilege required.

In general, a user of an organisation's systems should be offered no more than is necessary to perform the function required. See also Privileged User.