Description

• About: Demo for the RBAC following NIST Model - Database Security Course Work
• School: HCM City University of Technology
• Lucturer : Dang Tran Khanh

Introduction to RBAC

RBAC stand for Role Based Access Control model which satisfied the following conditions:

• Access is determined by roles
• A user’s roles are assigned by security administrators
• A role’s permissions are assigned by security administrators

For instance:

RBAC Models

There are 4 levels of RBAC Model as the followings:

• RBAC0: contains the minimum functionality for an RBAC system
• RBAC1: includes the RBAC0 functionality and adds role hierarchies, which enable one role to inherit permissions from another role
• RBAC2: includes RBAC0 and adds constraints, which restrict the ways in which the components of a RBAC system may be configured
• RBAC3: contains the functionality of RBAC0, RBAC1, and RBAC2

The NIST Model for RBAC

What is the NIST?

The Basic Model for RBAC

The Role Hierarchies Model for RBAC

The Constraints Model for RBAC

Overview about the architure of Demo

Please refer this file for more details about RBAC