How does the concept of Least Privilege contribute to Cloud Native security?

• A. Granting broad access by default to simplify operations
• B. Assigning permissions only after a breach
• C. Assigning the minimum set of permissions needed to each component or user
• D. Using always-on elevated privileges for all services

Answer: (C)

Least Privilege means giving each component or user only the permissions they truly need, and nothing more. In cloud-native systems, where many microservices and automation run with on-demand credentials, this minimizes what a compromised workload can do. If permissions are broad by default, a single breach can escalate to access across resources, data, and configurations. By tightly scoping access with proper RBAC, restricted service accounts, and clear namespace boundaries, each part of the system can perform its required actions without overreaching. Implementing this involves defining minimal roles, attaching them to service accounts, enforcing limited API access, and regularly auditing permissions. The other approaches—granting broad access by default, applying permissions only after a breach, or always using elevated privileges—increase risk and are incompatible with secure cloud-native operations.