Authorised

Authorised ()

The system shall allow only those actions that have been explicitly authorised


namespace	SABSA
stereotype	RiskAttribute
hardMetric	Reporting of all unauthorised actiona including # / period, severity & result (success/faiure)
softMetric	Independent audit and review against Security Architecture Capability Maturity Model with respect to the ability to detect unauthorised actions.



Business Attribute Taxonomy



		Risk Management Attributes	Authorised