role-based access control (RBAC)

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviation(s) and Synonym(s):

Definition(s):

  Access control based on user roles (i.e., a collection of access authorizations a user receives based on an explicit or implicit assumption of a given role). Role permissions may be inherited through a role hierarchy and typically reflect the permissions needed to perform defined functions within an organization. A given role may apply to a single individual or to several individuals.
Source(s):
CNSSI 4009-2015 NIST SP 800-53 Rev. 4
NIST SP 800-53 Rev. 4 under Role-Based Access Control

  A model for controlling access to resources where permitted actions on resources are identified with roles rather than with individual subject identities.
Source(s):
NIST SP 800-95 under Role Based Access Control (RBAC) OASIS XACML Profile for Role Based Access Control (RBAC)

  mapped to job function, assumes that a person will take on different roles, overtime, within an organization and different responsibilities in relation to IT systems.
Source(s):
NIST SP 800-16 under Role-Based

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center

Computer Security Resource Center

role-based access control (RBAC)

Glossary Comments