Principles
- Defense in depth
- No SPOF
- Fail safe
- Least priviligeses
- Only
- Harden
- Privileges Creep
- Just in case
- Separation of Duties: we wont have any single point of control
- No Single point of control
- Collusion: the requester can't be an approver
- Secure by a design
- It should be an AFTERethought that we put security in
- Start to Finish
- Secure out of the boxe (OOTB)
- KISS
- Keep it simple and ...