# least-privilege
標記為「least-privilege」的 5 篇文章
雲端 AI 服務的 IAM 最佳實務
雲端 AI 服務的 IAM 最佳實務:最小特權、角色切分、臨時憑證與關鍵動作的額外授權。
cloud-ai-securityiamawsazuregcpleast-privilege
代理權限模型設計
為具工具存取之 LLM 代理設計最小權限權限模型,包括基於能力的安全性。
defenseagent-permissionsleast-privilege
速率限制、沙箱化與執行控制
AI API 的速率限制策略、以 E2B 與 Docker 進行程式碼執行沙箱化、工具呼叫核准工作流,以及 AI 代理的最小權限原則。
rate-limitingsandboxingexecution-controlsleast-privilegee2bdockertool-approval
Feature Store Access Control
Access control strategies for feature stores: feature-level permissions, cross-team data leakage prevention, PII protection in features, service account management, and implementing least-privilege access for ML feature infrastructure.
access-controlfeature-storepermissionspiidata-leakageleast-privilegerbac
Sandboxing and Permission 模型s for 工具-Using 代理s
導覽 for implementing sandboxing and permission models that constrain tool-using LLM agents, covering least-privilege design, parameter validation, execution sandboxes, approval workflows, and audit logging.
sandboxingtool-usepermissionsagent-securityleast-privilegedefensewalkthrough