Which security aspect prevents unauthorized users from accessing sensitive data in Workday?

The security aspect that effectively prevents unauthorized users from accessing sensitive data in Workday is authentication. This process ensures that only users who have validated their identities can gain access to the system. It typically involves the use of user credentials, such as usernames and passwords, or multi-factor authentication methods. By confirming the identity of the user, authentication serves as a primary line of defense against unauthorized access, ensuring that only legitimate users interact with sensitive data.

While other options such as permissions, access control lists, and audit trails contribute to the overall security framework, they serve different functions. Permissions govern what authenticated users can do with the data and what actions they can perform, while access control lists are used to define who has access to specific resources and data. Audit trails, on the other hand, track user activity and changes within the system to provide transparency and traceability. However, none of these elements would be effective if the authentication process does not first ensure that only valid and authorized users can enter the system in the first place.