It must be noted that terraform state files can contain sensitive information. Hence the seggregation at backend level. Example: you have an AWS managed AD resources managed by the platform team and you probably want to avoid an app team to have the admin password of that instance. It stored in the state. The app team should then not be granted access at all, not even read only access.