⚠
BowTie Risk
Assessments
Hazards
Library
Implementations
Guide
← Back
Edit Barrier
Name
Type
Prevention
Mitigation
General
Category
Tags
(comma-separated)
Description
The system shall enforce assigned authorizations for all users and processes, controlling access to system functions and data in accordance with the principle of least privilege. Access rights shall be determined by role, need-to-know, and explicit authorization.
Save changes
Cancel