**Attack Surface:** User interfaces, target protocol interfaces and reachable data paths that can be attacked within the system.
FIXME add "Principle of Least Privilege"
**Principle of Least Privilege:** Users, processes, and interfaces are granted only the minimum level of permission necessary to perform their legitimate functions, and nothing more.
