English

Role-Based Access Controls

Cryptography and Security 2009-06-03 v2
Authors: David F. Ferraiolo , D. Richard Kuhn
View on arXiv PDF

Abstract

While Mandatory Access Controls (MAC) are appropriate for multilevel secure military applications, Discretionary Access Controls (DAC) are often perceived as meeting the security processing needs of industry and civilian government. This paper argues that reliance on DAC as the principal method of access control is unfounded and inappropriate for many commercial and civilian government organizations. The paper describes a type of non-discretionary access control - role-based access control (RBAC) - that is more central to the secure processing needs of non-military systems than DAC.

Keywords

access control

Cite

@article{arxiv.0903.2171,
  title  = {Role-Based Access Controls},
  author = {David F. Ferraiolo and D. Richard Kuhn},
  journal= {arXiv preprint arXiv:0903.2171},
  year   = {2009}
}

Comments

pp. 554 - 563

Related papers

View all related →
Software Engineering · Computer Science
Towards Integrated Modelling of Dynamic Access Control with UML and Event-B
Inna Vistbakka, Elena Troubitsyna
2018-05-16
Cryptography and Security · Computer Science
Access Control for Hierarchical Joint-Tenancy
Jonathan K. Adams, Basheer N. Bristow
2007-05-23
Distributed, Parallel, and Cluster Computing · Computer Science
Policy Specification in Role based Access Control on Clouds
Gitanjali, Sukhjit Singh Sehra, Jaiteg Singh
2013-08-26
Cryptography and Security · Computer Science
An Extension for Combination of Duty Constraints in Role-Based Access Control
Ali Hosseini, Mohammad Abdollahi Azgomi
2010-01-14
Cryptography and Security · Computer Science
ARBITER: AI-Driven Filtering for Role-Based Access Control
Michele Lorenzo, Idilio Drago, Dario Salvadori, Fabio Romolo Vayr
2025-12-24
Cryptography and Security · Computer Science
Toward Deep Learning Based Access Control
Mohammad Nur Nobi, Ram Krishnan, Yufei Huang, Mehrnoosh Shakarami +1
2022-03-30
Distributed, Parallel, and Cluster Computing · Computer Science
Extended Role Based Access Control with Blob Service on Cloud
Mamoon Rashid, Er. Rishma Chawla
2013-12-03
Cryptography and Security · Computer Science
LLMAC: A Global and Explainable Access Control Framework with Large Language Model
Sharif Noor Zisad, Ragib Hasan
2026-02-17
Cryptography and Security · Computer Science
A Role-Based Encryption Scheme for Securing Outsourced Cloud Data in a Multi-Organization Context
Nazatul Haque Sultan, Vijay Varadharajan, Lan Zhou, Ferdous Ahmed Barbhuiya
2025-04-17
Cryptography and Security · Computer Science
Constrained Role Mining
Carlo Blundo, Stelvio Cimato
2015-03-20
Cryptography and Security · Computer Science
RBAC for Healthcare-Infrastructure and data storage
Ramesh Narasimman, Izzat Alsmadi
2020-10-22
Cryptography and Security · Computer Science
Dynamic Modeling for Representing Access Control Policies Effect
Kambiz Ghazinour, Mehdi Ghayoumi
2015-06-01
Cryptography and Security · Computer Science
A Service-Centric Approach to a Parameterized RBAC Service
Jonathan K. Adams
2021-01-12
Programming Languages · Computer Science
Lambda-RBAC: Programming with Role-Based Access Control
Radha Jagadeesan, Alan Jeffrey, Corin Pitcher, James Riely
2015-07-01
Cryptography and Security · Computer Science
Automated Verification Of Role-Based Access Control Policies Constraints Using Prover9
Khair Eddin Sabri
2015-03-27
Cryptography and Security · Computer Science
Role Mining with Probabilistic Models
Mario Frank, Joachim M. Buhmann, David Basin
2013-01-08
Cryptography and Security · Computer Science
ARBAC Policy for a Large Multi-National Bank
Karthick Jayaraman, Vijay Ganesh, Mahesh Tripunitara, Martin C Rinard +1
2011-10-14
Cryptography and Security · Computer Science
Automated fixing of access policy implementation in Industrial Networked Systems
Manuel Cheminod, Luca Durante, Lucia Seno, Fulvio Valenza +1
2017-10-11
Cryptography and Security · Computer Science
Scalable Role-based Access Control Using The EOS Blockchain
Mohsin Ur Rahman
2020-07-07
Cryptography and Security · Computer Science
The Equivalent Conversions of the Role-Based Access Control Model
N. F. Bogachenko
2018-12-27
Cryptography and Security · Computer Science
Function-Based Access Control (FBAC): From Access Control Matrix to Access Control Tensor
Yvo Desmedt, Arash Shaghaghi
2016-09-16
Cryptography and Security · Computer Science
On the Practicality of Cryptographically Enforcing Dynamic Access Control Policies in the Cloud (Extended Version)
William C. Garrison, Adam Shull, Steven Myers, Adam J. Lee
2016-04-28
Software Engineering · Computer Science
Static Enforcement of Role-Based Access Control
Asad Ali, Maribel Fernández
2014-09-12
Artificial Intelligence · Computer Science
Securing AI Agents: Implementing Role-Based Access Control for Industrial Applications
Aadil Gani Ganie
2025-09-16
Cryptography and Security · Computer Science
Dynamic Role-Based Access Control for Decentralized Applications
Arnab Chatterjee, Yash Pitroda, Manojkumar Parmar
2020-10-09
R2 v1 2026-06-21T12:39:50.662Z