Segregation of Duties
The governance principle that no single person should have unchecked control over a complete process — requiring multiple people to be involved in critical functions.
Segregation of duties (SoD) is a fundamental governance control that prevents fraud, errors, and abuse of authority by dividing critical functions among multiple people.
Classic examples: - The person who authorises payments should not be the person who processes them - The person who creates purchase orders should not be the person who approves them - The person who develops code should not be the person who deploys it to production
For AI governance, segregation of duties takes on new dimensions: - The person who defines AI agent constraints should not be the only person who can override them - The AI agent that generates recommendations should not be the same agent that executes them - The system that enforces governance should be auditable by independent parties
How Constellation handles this
Constellation enforces segregation of duties through constraint definitions and authority boundaries. Different roles have different permissions, and the system prevents single points of control over critical functions.