Class: AuthorizedPrivilege
Identifies a specific system privilege held by the user, along with an associated description and/or rationale for the privilege.
URI: oscal:AuthorizedPrivilege
classDiagram
class AuthorizedPrivilege
click AuthorizedPrivilege href "../AuthorizedPrivilege/"
AuthorizedPrivilege : description
AuthorizedPrivilege : functions_performed
AuthorizedPrivilege : title
Slots
| Name | Cardinality and Range | Description | Inheritance |
|---|---|---|---|
| title | 1 MarkupLineType |
A human-readable name or title | direct |
| description | 0..1 MarkupMultilineType |
A human-readable description | direct |
| functions_performed | 1..* String |
Describes a function performed for a given authorized privilege | direct |
Usages
| used by | used in | type | used |
|---|---|---|---|
| SystemUser | authorized_privileges | range | AuthorizedPrivilege |
In Subsets
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/oscal
Mappings
| Mapping Type | Mapped Value |
|---|---|
| self | oscal:AuthorizedPrivilege |
| native | oscal:AuthorizedPrivilege |
LinkML Source
Direct
name: AuthorizedPrivilege
description: Identifies a specific system privilege held by the user, along with an
associated description and/or rationale for the privilege.
in_subset:
- implementation_common
from_schema: https://w3id.org/lmodel/oscal
slots:
- title
- description
- functions-performed
slot_usage:
title:
name: title
required: true
functions-performed:
name: functions-performed
required: true
Induced
name: AuthorizedPrivilege
description: Identifies a specific system privilege held by the user, along with an
associated description and/or rationale for the privilege.
in_subset:
- implementation_common
from_schema: https://w3id.org/lmodel/oscal
slot_usage:
title:
name: title
required: true
functions-performed:
name: functions-performed
required: true
attributes:
title:
name: title
description: A human-readable name or title.
from_schema: https://w3id.org/lmodel/oscal
rank: 1000
alias: title
owner: AuthorizedPrivilege
domain_of:
- Group
- Control
- Metadata
- Revision
- Role
- Location
- Resource
- Part
- ProfileGroup
- Addition
- SubjectReference
- AssessmentPlatform
- Activity
- Step
- Task
- AssessmentPart
- ControlPart
- SystemComponent
- Protocol
- SystemUser
- AuthorizedPrivilege
- Observation
- Finding
- FindingTarget
- Risk
- Response
- RequiredAsset
- RiskLogEntry
- InformationType
- LeveragedAuthorization
- Result
- AssessmentLogEntry
- DefinedComponent
- PoamItem
range: MarkupLineType
required: true
description:
name: description
description: A human-readable description.
from_schema: https://w3id.org/lmodel/oscal
rank: 1000
alias: description
owner: AuthorizedPrivilege
domain_of:
- Role
- Resource
- ParameterConstraint
- ReviewedControls
- ControlSelection
- ControlObjectiveSelection
- AssessmentSubject
- AssessmentSubjectPlaceholder
- LocalObjective
- AssessmentMethod
- Activity
- Step
- Task
- SystemComponent
- SystemUser
- AuthorizedPrivilege
- InventoryItem
- Observation
- RelevantEvidence
- Finding
- FindingTarget
- Risk
- MitigatingFactor
- Response
- RequiredAsset
- RiskLogEntry
- SystemCharacteristics
- InformationType
- AuthorizationBoundary
- Diagram
- NetworkArchitecture
- DataFlow
- SspControlImplementation
- ByComponent
- Export
- ProvidedControlImplementation
- ControlResponsibility
- InheritedControlImplementation
- SatisfiedControlImplementation
- Result
- AssessmentLogEntry
- DefinedComponent
- Capability
- IncorporatesComponent
- ControlImplementationSet
- ImplementedRequirement
- ImplementedControlStatement
- QualifierItem
- PoamItem
range: MarkupMultilineType
functions-performed:
name: functions-performed
description: Describes a function performed for a given authorized privilege.
from_schema: https://w3id.org/lmodel/oscal
rank: 1000
alias: functions_performed
owner: AuthorizedPrivilege
domain_of:
- AuthorizedPrivilege
range: string
required: true
multivalued: true