Determining role rights from use cases

  • Fernandez E
  • Hawkins J
  • 29


    Mendeley users who have this article in their library.
  • 77


    Citations of this article.


We propose a simple and complete method to determine the needed rights for roles in a system. We make use of the concept of use cases, commonly used to determine requirements in object-oriented system development. We extend use cases with rights specifications and we determine all of a role’s rights from the collection of all use cases for the system. This method is in strict accordance with the least privilege principle.

Author-supplied keywords

  • analysis
  • authorization models
  • object-oriented
  • object-oriented authorization
  • roie-based-

Get free article suggestions today

Mendeley saves you time finding and organizing research

Sign up here
Already have an account ?Sign in

Find this document


  • E. B. Fernandez

  • J. C. Hawkins

Cite this document

Choose a citation style from the tabs below

Save time finding and organizing research with Mendeley

Sign up for free