In computer programming and computer security, privilege separation (privsep) is one software-based technique for implementing the principle of least privilege.[1][2] With privilege separation, a program is divided into parts which are limited to the specific privileges they require in order to perform a specific task. This is used to mitigate the potential damage of a computer security vulnerability.