Secure Software Development

Terms

Separation of duties

Separation of duties is a standard security practice to ensure that no single user is able to fully compromise and control the system. Separation of duties implements a system of checks and balances. Likewise, separating privilege levels is a means of implementing a least privilege and ensuring that any user on the system is only able to perform those tasks needed for their job. (p 124)

Logs

logs are records of significant events that are recorded, along with metadata, to allow the identification, tracing, and reconstruction of those events. (p 125)