In the context of application developer, which principle most directly governs security & deployment practices?