RBAC - Role Based Access Control

RBAC - Role Based Access Control

José Cruz José Cruz

José Cruz

Experienced Software Architect in Java, .NET, and Python, and a Passion for Crafting Scalable, High-Quality Solutions.

发布日期: 2023年8月18日
+ 关注

RBAC - Role Based Access Control


is a security model to control access to resources based on the roles of individuals.


- Access permissions are assigned to roles. (manager, user, admin, etc.)??

- Users are assigned to specific roles.??

- Operates on the principle of least privilege.??

- Roles: Represent different job functions or responsibilities.??

- Permissions: What actions can be performed on the resources or data.??

- Users: The individuals assigned to one or more roles.??

- It is possible to use hierarchies, where higher levels inherit the permissions of lower-level roles.??

- Pros: scalable, productivity, and simplified administration.??

- Cons: It can be difficult to manage exceptions or particular things for specific users.

- Cons: Can be difficult to manage exceptions or particular things for specific users.

要查看或添加评论,请登录

José Cruz的更多文章

  • SaaS: Software as a Service
    2024年1月8日

    SaaS: Software as a Service

    - A SaaS vendor hosts the service or the software. - The vendor provides a license or subscription model.

  • X-aaS – how many
    2023年12月5日

    X-aaS – how many

    SaaS - Software as a Service PaaS - Platform as a Service IaaS - Infrastructure as a Service AaaS - Analytics as a…

  • What is an Architecture Style
    2023年10月21日

    What is an Architecture Style

    Architecture Style is the same as an Architecture Pattern. It gives a name to the way the components and their…

  • IAST
    2023年9月23日

    IAST

    IAST - Interactive Application Security Testing identifies security vulnerabilities in application code while it’s…

  • Dynamic Application Security Testing (DAST)
    2023年9月17日

    Dynamic Application Security Testing (DAST)

    is a testing process to assess an application's security weaknesses and vulnerabilities. - Performs a black-box testing.

  • SAST
    2023年9月13日

    SAST

    is a method used to review the source code of an application to identify potential vulnerabilities. - It is commonly…

  • BASE Transactions
    2023年9月11日

    BASE Transactions

    is a transaction model often used on databases that rely heavily on horizontal scaling and performance. - BA: Basic…

  • ACID
    2023年9月10日

    ACID

    is an acronym used in databases to describe the properties associated with the input-output operations on the data. -…

  • Coarse-grained vs. fine-grained
    2023年9月9日

    Coarse-grained vs. fine-grained

    In computing, these concepts refer to the level of detail at which a system, configurations, security management, and…

  • RAG - Retrieval Augmentation Generation
    2023年8月27日

    RAG - Retrieval Augmentation Generation

    RAG - Retrieval Augmentation Generation is a combination of Retrieval Augmentation and Generation to improve natural…

    1 条评论

社区洞察

其他会员也浏览了