role-based access control (RBAC)

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviations / Acronyms / Synonyms:

RBAC

CNSSI 4009-2015, NIST IR 8473, NIST SP 1800-24B, NIST SP 800-95

Definitions:

  Access control based on user roles (i.e., a collection of access authorizations a user receives based on an explicit or implicit assumption of a given role). Role permissions may be inherited through a role hierarchy and typically reflect the permissions needed to perform defined functions within an organization. A given role may apply to a single individual or to several individuals.
Sources:
CNSSI 4009-2015

  A model for controlling access to resources where permitted actions on resources are identified with roles rather than with individual subject identities.
Sources:
NIST SP 800-95 under Role Based Access Control (RBAC) from OASIS XACML Profile for Role Based Access Control (RBAC)

  mapped to job function, assumes that a person will take on different roles, overtime, within an organization and different responsibilities in relation to IT systems.
Sources:
NIST SP 800-16 under Role-Based

  Access control based on user roles (i.e., a collection of access authorizations that a user receives based on an explicit or implicit assumption of a given role). Role permissions may be inherited through a role hierarchy and typically reflect the permissions needed to perform defined functions within an organization. A given role may apply to a single individual or to several individuals.
Sources:
NIST SP 800-53 Rev. 5 under role-based access control

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.