There are two basic subjects for security design principle the simplicity – KISS which makes design and connections easy and easy to verify its safety and the other one is restriction which is to lessen the power of entities. There are 8 security design principles listed are the following:
· The least privilege principle which the entity should be set only those privilege needed to finish a task. The temporary elevation of opportunity should be give up immediately and append permission only for logging procedure.
· The fail safe defaults principle which unless a subject is given clear access to an object and it should be deprived of access to the object. The default access is none and restriction privileges at the time of creation.
· The economy of mechanism principle which security mechanism must be as simple as possible and testing and verification is easy because expectations are less and interface to other modules is implicit.
· The complete mediation principle which all right of entry to objects should be tested to ensure they are allowed.
· The open design principle which security of device should not rest on confidentiality of its execution.
· The separation of privilege principle which system should not grant authorization based on single circumstance.
· The least common mechanism principle which devices used to factual of entry resources should not be communal.
· The psychological acceptability principle which security device should not make the source hard to access and distinguishes the most significant part in computer system which is the human.