Issue 14972: Double Delete Authority (rms-ftf) Source: TethersEnd Consulting (Mr. Daryll Prescott, drp(at)tethersend.com) Nature: Uncategorized Issue Severity: Summary: There needs to be a double delete authority, two seperate persons (personalities) in the system before something that is identified as a record can be dispositioned. (Daryll Prescott, 20091203) Resolution: Revised Text: Actions taken: January 14, 2010: received issue Discussion: End of Annotations:===== s is issue # 14972 Double Delete Authority From: "PrescottD" To: "'RMS-FTF@omg.org'" Subject: Issue 14972 Date: Thu, 4 Mar 2010 18:50:31 -0500 X-Mailer: Microsoft Outlook, Build 10.0.2627 X-Proofpoint-Virus-Version: vendor=fsecure engine=1.12.8161:2.4.5,1.2.40,4.0.166 definitions=2010-03-05_01:2010-02-06,2010-03-04,2010-03-04 signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 ipscore=0 phishscore=8 bulkscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx engine=5.0.0-0908210000 definitions=main-1003040246 There needs to be a double delete authority, two separate persons (personalities) in the system before something that is identified as a record can be dispositioned. (Daryll Prescott, 20091203) This is the most crucial item of all. Double deletion requirement goes to the security of the records and the ensuring that records sets are not illegitimately destroyed, made incomplete, or willfully sabotaged. The double deletion requirement provides the safeguard that a single personality within an environment cannot summarily delete a record or set of records. This requirement is extended by mandating the two personalities within the environment have to belong to two physically different people. It CANNOT allow a single individual with more than one personality to be able to carry out both functions of deletion, review and opinion the record set is eligible for deletion and the actual deletion of the record or record set. There needs to be a double delete authority, two seperate persons (personalities) in the system before something that is identified as a record can be dispositioned. (Daryll Prescott, 20091203)