Changes between Version 16 and Version 17 of Internal/Rbac
- Timestamp:
- Oct 6, 2006, 4:19:47 PM (18 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Internal/Rbac
v16 v17 1 1 [[TOC(Internal/Rbac,Internal/Rbac/OrbitRbacLevels,Internal/Rbac/OrbitRbacDesign,Internal/Rbac/LdapResources,Internal/Rbac/RbacResources)]] 2 2 == Role-Based Access Control == 3 Role-Based Access Control (RBAC) will be used by ORBIT to ''control'' each user's ''access'' to ORBIT resources based on his or her ''role''. RBAC promises simpler administration of access control than maintaining access control lists for each resource. It enables an organization to enforce separation of duty, the principle of least privilege and timely revocation of trust. Because it is based on a formal model, a given a n assignment of users to roles may be checked for consistency with the organization's security design goals.3 Role-Based Access Control (RBAC) will be used by ORBIT to ''control'' each user's ''access'' to ORBIT resources based on his or her ''role''. RBAC promises simpler administration of access control than maintaining access control lists for each resource. It enables an organization to enforce separation of duty, the principle of least privilege and timely revocation of trust. Because it is based on a formal model, a given assignment of users to roles may be checked for consistency with the organization's security design goals. 4 4 5 5 RBAC is being implemented in ORBIT to protect a project's information from access or dirruption by other projects, to minimize some problems with projects, and to provide tools for project administration by each project's Principal Investigator.