Separation of Duty in Information Security

Groll, Sebastian and Fuchs, Ludwig and Pernul, Guenther (2025) Separation of Duty in Information Security. ACM COMPUTING SURVEYS, 57 (7): 180. ISSN 0360-0300, 1557-7341

Full text not available from this repository. (Request a copy)

Abstract

Separation of Duty (SoD) is a fundamental security principle that ensures critical tasks or functions are divided among multiple users to prevent fraud. The topic of SoD spans over many different areas, such as Identity and Access Management, Workflows, Petri nets, or high-level enterprise management. In this survey article, we conduct a systematic and stand-alone literature review on SoD. We develop a multi-level classification scheme and analyze the state-of-the-art and current trends in SoD research as well as the current challenges and potential research gaps. To the best of our knowledge, this is the first effort to comprehensively survey and structure SoD literature.

Item Type: Article
Uncontrolled Keywords: ACCESS-CONTROL POLICIES; CONSTRAINTS; DUTIES; SPECIFICATION; ENFORCEMENT; MANAGEMENT; CONFLICTS; IDENTITY; SYSTEMS; MODEL; Separation of duty; identity and access management; workflows
Subjects: 000 Computer science, information & general works > 004 Computer science
300 Social sciences > 330 Economics
Divisions: Business, Economics and Information Systems > Institut für Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul)
Informatics and Data Science > Department Information Systems > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul)
Depositing User: Dr. Gernot Deinzer
Date Deposited: 31 Mar 2026 04:20
Last Modified: 31 Mar 2026 04:20
URI: https://pred.uni-regensburg.de/id/eprint/65930

Actions (login required)

View Item View Item
pred is powered by EPrints 3.4 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.