This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Test Role Definitions (OTG-IDENT-001)

From OWASP

Revision as of 14:19, 28 July 2013 by Andrew Muller (talk | contribs) (Created page with "== Summary == It is common amongst modern enterprises to define system roles to manage users and authorization to system resources. == Test objectives == Validate the syst...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

1 Summary
2 Test objectives
3 How to test
- 3.1 Example
4 Tools
5 References
6 Remediation

Summary

It is common amongst modern enterprises to define system roles to manage users and authorization to system resources.

Test objectives

Validate the system roles defined within the application sufficiently define and separate each system and business role

How to test

Example

Tools

References

Role engineering and RBAC standards

Remediation

Retrieved from "https://wiki.owasp.org/index.php?title=Test_Role_Definitions_(OTG-IDENT-001)&oldid=156161"