A system must validate access rights to all its resources and must not rely on a cached permission matrix. If the access level to a given resource is revoked bu...

A system must validate access rights to all its resources and must not rely on a cached permission matrix. If the access level to a given resource is revoked but is not reflected in the permission matrix, the security is violated
Which term refers to this REST security design principle?