Friday, September 26, 2008

Role vs Group

We've been discussing the difference between roles vs groups. And I found the answer here[1]

So let me quote from[1]

"A frequently asked question is, What is the differerence between roles and groups?" Groups of users as the unit of access control are commonly provided in many access control systems. A major di erence between most implementations of groups and the concept of roles is that groups are typically treated as a collection of users and not as a collection of permissions. A role is both a collection of users on one side and a collection of permissions on the other. The role serves as an intermediary to bring these two collections together."



[1]http://csrc.nist.gov/rbac/sandhu96.pdf
Posted by at

2 comments:

Anonymous said...

is there something like roleGroup or role type or role set etc.?

September 25, 2009 at 12:57 AM
muthulee said...

Sorry! I don't get the question.

September 25, 2009 at 7:03 AM

Post a Comment

Subscribe to: Post Comments (Atom)