Author:

Keywords:

iMinds

Abstract:

Software-as-a-Service (SaaS) is a maturing model for offering online applications which is drawing a growing interest from industry. However, SaaS is still facing many challenges which hinder its widespread adoption. One of these challenges is manageable and effective access control in the presence of the multiple organizations involved. The first step to address this challenge is clarifying the requirements for access control for SaaS and the challenges that result from them. To achieve this, we analyzed a case study of a SaaS application in the domain of electronic workforce management. The analysis was performed with the cooperation of the involved company (which is anonymized in this document). This document (i) describes the SaaS application itself, using an illustrative scenario, use cases and textual non-functional requirements and (ii) provides a set of access control policies that apply to this application.