Unit 1 Assignment 1
Unit 1 Assignment 1: Identification, Authentication, and Authorization Techniques
A = Assigned to the user F = Needed for primary function
T = Temporary N = Never
BP = By Position Assigned RO = Read Only
Segregation of Duties Matrix
(System User–Rights and Permissions)
Department
Jennifer
Buster
Bradley
Lloyd
LuEllen
Robert
Spare
Sam
Receiving
A
A
A
A
A
A
A
A
Shipping
A
A
A
A
A
A
A
A
Sales
A
A
A
A
A
A
A
A
Accounts Payable
A
A
A
A
A
A
A
A
Segregation of Duties Matrix
(System User–Rights and Permissions)
Department
Jennifer
Buster
Bradley
Lloyd
LuEllen
Robert
Spare
Sam
Receiving
N
N
RO
F
N
RO
T
N
Shipping
T
F
RO
RO
F
RO
T
N
Sales
F
N
RO
RO
N
RO
T
N
Accounts Payable
BP
N
RO
N
N
RO
T
N
What were the incompatible functions in Jennifer’s access account, and why do you think such an incompatibility existed?
Jennifer had access to everything to the system because she’s considered as an asset to the company as well as helping the company profit, it was only right to give her as much access to the system to better the company’s profit margins. But that will give her more power to the accounts than she actually needs.
What were the potential conflicts and incompatible functions in Lloyd’s access account authorizations?
With Lloyd’s account having access to everything, he’s has access to things he really doesn’t need.
What are the requirements for Buster and LuEllen?
The only real access they need is to the shipping department in order to ship out the customers’ requests.
A = Assigned to the user F = Needed for primary function
T = Temporary N = Never
BP = By Position Assigned RO = Read Only
Segregation of Duties Matrix
(System User–Rights and Permissions)
Department
Jennifer
Buster
Bradley
Lloyd
LuEllen
Robert
Spare
Sam
Receiving
A
A
A
A
A
A
A
A
Shipping
A
A
A
A
A
A
A
A
Sales
A
A
A
A
A
A
A
A
Accounts Payable
A
A
A
A
A
A
A
A
Segregation of Duties Matrix
(System User–Rights and Permissions)
Department
Jennifer
Buster
Bradley
Lloyd
LuEllen
Robert
Spare
Sam
Receiving
N
N
RO
F
N
RO
T
N
Shipping
T
F
RO
RO
F
RO
T
N
Sales
F
N
RO
RO
N
RO
T
N
Accounts Payable
BP
N
RO
N
N
RO
T
N
What were the incompatible functions in Jennifer’s access account, and why do you think such an incompatibility existed?
Jennifer had access to everything to the system because she’s considered as an asset to the company as well as helping the company profit, it was only right to give her as much access to the system to better the company’s profit margins. But that will give her more power to the accounts than she actually needs.
What were the potential conflicts and incompatible functions in Lloyd’s access account authorizations?
With Lloyd’s account having access to everything, he’s has access to things he really doesn’t need.
What are the requirements for Buster and LuEllen?
The only real access they need is to the shipping department in order to ship out the customers’ requests.