Defined term

Role-based Access Control

Role-based Access Control: (RBAC) Access control based on user roles (i.e., a collection of access authorizations a user receives based on an explicit or…

Verified
📚 Multi-Source
Cybersecurity
DefinitionSourcesRelated terms

Definition

(RBAC) Access control based on user roles (i.e., a collection of access authorizations a user receives based on an explicit or implicit assumption of a given role). Role permissions may be inherited through a role hierarchy and typically reflect the permissions needed to perform defined functions within an organization. A given role may apply to a single individual or to several individuals.

Alternative Definitions

Definition 2

(RBAC) A model for controlling access to resources where permitted actions on resources are identified with roles rather than with individual subject identities. (SP 800-95) (NISTIR)

Source: The Cyber GlossaryType: external

Sources

1
Committee on National Security Systems Glossary CNSSI 4009-2015
View Source
2
The Cyber Glossary
View Source

Continue Research

Browse the full glossary for adjacent terms, or subscribe for updates when definitions and sources are expanded.

Browse all termsMore R termsSubscribe for updates