28/10/2008
Role Based Access Control
19
Role Based Access Control
l
This is an evolving area and it is surprising how
recently the standards for it have been written
(2001 on)
l
NIST "Role Based Access Control (RBAC) and
Role Based Security
l
“The NIST Model for Role-Based Access
Control: Towards A Unified Standard”
l
Proposed NIST Standard for Role-Based Access
Control
l
ACM Transactions on Information and System
Security, Vol. 4, No. 3, August 2001 by
D.F.Ferraiolo et al.
l
"Beyond Roles: A Practical Approach to
Enterprise User Provisioning"
l
l