Only authenticated users can access data

#secure

Background: Prior to using the system, users must authenticate themselves, either by using SSO or entering unique credentials (username/password).

After authentication, the system determines this users’ authorization level (which function these users are allowed to use and which data they are allowed to see and/or modify)

Scenario: Users are allowed to use only those system functions and see only the data they are authorized for.

Related Quality Requirements

Access control is enforced | #secure #suitable
Authenticity of a digital document | #secure #suitable
Avoid common vulnerabilities | #reliable #secure
Confidentiality by multi-tenancy | #secure
Detailed audit log | #secure #suitable
Employee attempts to modify pay rate | #secure
Encrypted storage | #secure
Every data modification is logged | #secure
Zero-knowledge data storage | #secure

Related Qualities

Confidentiality
Privacy
Security