Conclusion Programming errors in privileged services can lead to compromise. Privilege separation reduces the amount of privileged code. Privilege separation is a generic concept. Very useful for authenticating services. Integrated into OpenSSH by default. Implementation in OpenSSH has demonstrated that privilege separation can prevent system compromise due to programming errors.