Separation of Duties

Abstract

Separation of Duty is a security principle used to formulate multi-person control policies, requiring that two or more different people be responsible for the completion of a task or set of related tasks. The purpose of this principle is to discourage fraud by spreading the responsibility and authority for an action or task over multiple people, thereby raising the risk involved in committing a fraudulent act by requiring the involvement of more than one individual. A frequently used example is the process of creating and approving purchase orders. If a single person creates and approves purchase orders, it is easy and tempting for them to create and approve a phony order and pocket the money; if different people must create and approve...

(https://link.springer.com/referenceworkentry/10.1007%2F978-1-4419-5906-5_830, accessed 14 Jan 2021)

Links

• https://link.springer.com/referenceworkentry/10.1007%2F978-1-4419-5906-5_830

Citation

Zurko, M.E., Simon, R.T., 2011. Separation of Duties, in: van Tilborg, H.C.A., Jajodia, S. (Eds.), Encyclopedia of Cryptography and Security. Springer US, Boston, MA, pp. 1182–1185. https://doi.org/10.1007/978-1-4419-5906-5_830