O'Reilly logo
  • draco3196 thinks this is interesting:

Rogue Internal Operatives

Another aspect in the human vector of access controls are rogue internal operatives. Disgruntled employees can pose a major threat to information security in the forms of theft, sabotage, vandalism, and more. The best way to handle these threats is by embracing a least-privileged access control policy. By limiting users to the least amount of access they need to accomplish their tasks, the damage they could do is limited.


Cover of Access Control, Authentication, and Public Key Infrastructure