SC-32(1)—Separate Physical Domains For Privileged Functions

Privileged functions that operate in a single physical domain may represent a single point of failure if that domain becomes compromised or experiences a denial of service.