1.Previous
3.Next

assignment relation.
* and is a many to many subject to role assignment relation.
*

A subject may have multiple simultaneous sessions with/in different roles.

Standardized levels

The NIST/ANSI/INCITS RBAC standard (2004) recognizes three levels of RBAC:
# core RBAC
# hierarchical RBAC, which adds support for inheritance between roles
# constrained RBAC, which adds separation of duties

Relation to other models

RBAC is a flexible access control

1.Previous
3.Next