To increase the functionality of an operating system

To minimize potential vulnerabilities and enhance system security

To improve user accessibility

To maximize attack surface

Removing unnecessary software

Limiting administrative privileges

Allowing unrestricted application installations

Strictly managing application updates

Systems should run only the protocols and services required by legitimate users

Systems should run as many protocols and services as possible

Systems should only run protocols and services for remote access

Systems should only run protocols and services for local access

To hold temporary data generated by applications

To store cached credentials securely

To hold user data generated by applications and cached credentials securely

To provide extra storage for applications

They complicate the system configuration

They provide a starting point for secure configurations

They limit access controls

They prioritize functionality over security

To increase the attack surface

To limit the spread of cybersecurity incidents

To simplify an attacker's work

To reduce data protection and privacy

By increasing network traffic

• By facilitating lateral spread of threats

By limiting interaction between devices

By expanding the attack surface