Role Based Access Control (RBAC) is a project of the National Institute of Standards and Technology (NIST) and is intended to create a comprehensive access security model for the structure and operation of enterprise-level organizations in a high technology environment. RBAC has now reached maturity and has been mandated or recommended for implementation by industry regulations worldwide.
In RBAC, users have roles that provide them with permissions to perform defined operations, such as read/write, and on objects, such as computer files. RBAC incorporates the principles of separation of duties and organizational hierarchy into its model. Separation of duties prohibits a user with a certain job function to serve in another job function at the same time. Hierarchy reflects the layered role structure of large organizations but also facilitates administration and role creation by allowing rights to flow down from senior to junior roles. The following diagram describes the RBAC model:
|
Copyright © 2014 CA.
All rights reserved.
|
|