Controlling Permissions for Temporary Security Credentials