Polyinstantiation is a cybersecurity strategy where multiple instances of a shared resource are created to prevent a user without the correct privileges from seeing the more sensitive information. In simpler terms, Polyinstantiation’s main purpose is to make a copy of one object or document and modify the attributes of the second copy, leaving the original document or object untouched. Polyinstantiation provides unique views into a record based upon the viewers own rights, clearance levels, or specific attributes. Please watch the video below for a real-world database example.
Source: Skillset, Computerhope
Related Terms: Administrator Rights, Least Privilege
Related Readings: Solutions to the Polyinstantiation Problem
What should you do as a SMB Owner?
Polyinstantiation is another strategy that government organizations use to limit information to certain employees. Similar to administrative rights, polyinstantiation can be used to restrict access to individuals that do not have a clearance or need to know without tipping them off that something more exists.
CyberHoot does have some other resources available for your use. Below are links to all of our resources, feel free to check them out whenever you like:
- Blog
- Cybrary (Cyber Library)
- Infographics
- Newsletters
- Press Releases
- Instructional Videos (HowTo) – very helpful for our SuperUsers!
Note: If you’d like to subscribe to our newsletter, visit any link above (besides infographics) and enter your email address on the right-hand side of the page, and click ‘Send Me Newsletters’.