Which principle is behind role-based access control (RBAC)?
1) separation of duties
2) auditability
3) least privilege
4) defense in depth