Zurko and Simon, 2011

Separation of Duties

Type

Encyclopedia Entry

Year

2011

Authors

Zurko, M.E., Simon, R.T.

Book

Tilborg and Jajodia, 2011

Pages

1182–1185

Abstract

Separation of Duty is a security principle used to formulate multi-person control policies, requiring that two or more different people be responsible for the completion of a task or set of related tasks. The purpose of this principle is to discourage fraud by spreading the responsibility and authority for an action or task over multiple people, thereby raising the risk involved in committing a fraudulent act by requiring the involvement of more than one individual. A frequently used example is the process of creating and approving purchase orders. If a single person creates and approves purchase orders, it is easy and tempting for them to create and approve a phony order and pocket the money; if different people must create and approve...

Links

Citation

Zurko, M.E., Simon, R.T., 2011. Separation of Duties, in: van Tilborg, H.C.A., Jajodia, S. (Eds.), Encyclopedia of Cryptography and Security. Springer US, Boston, MA, pp. 1182–1185. https://doi.org/10.1007/978-1-4419-5906-5_830


Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.


This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.