Role-based Access Control

security

Definition

Role-Based Access Control

Role-based access control (RBAC) is an access control model in which roles represent sets of subjects with similar access rights. Permissions are assigned to roles and roles are assigned to subjects. Users obtain the access rights of the roles assigned to them.

Hierarchy

Partial Ordering

Roles might be organised in a hierarchy. A partial ordering is defined over roles.

Inheritance

Each role gets all access rights of roles below it. Only new access rights are assigned to a role.

Reminds me of a Hasse Diagram, which is a natural way to visualise partial orders.