- 3.1 Identify and apply industry best practices for access control methods.
The Separation of Duties principle ensures that no single person or entity controls all of the functions for a critical process. Instead of a single person or entity having all of the responsibility, the responsibilities are divided between two or more people or entities.
Consider an accounting department. They are responsible for accepting bills, identifying bills that will be paid and then paying them. Separation of Duties is commonly used to separate the functions into two separate divisions.
- Accounts receivable. This division receives and approves the bills.
- Accounts payable. This division pays the bills approved by accounts receivable.
The principle of separation of duties is designed to prevent fraud, theft, and errors.
Good luck in your studies.
CompTIA Security+: Get Certified Get Ahead: SY0-201 Study Guide