Fuzzy role-based access control

Carles Martínez-García, Guillermo Navarro-Arribas, Joan Borrell

Research output: Contribution to journalArticleResearchpeer-review

25 Citations (Scopus)


RBAC (Role-Based Access Control) is a widely used access control model, which reduces the maintenance cost of classical identity-based access control. However, despite the benefits of RBAC, there are environments in which RBAC can hardly be applied. We present FRBAC (Fuzzy Role-Based Access Control), a generalization of RBAC through fuzzy relations that extends the applicability of RBAC to environments where authorization-related information is vague. Moreover, FRBAC deals with environments where the actions that can be executed over the resources have a fractional meaning, as data lying in databases and risk-based access control. © 2011 Elsevier B.V. All rights reserved.
Original languageEnglish
Pages (from-to)483-487
JournalInformation Processing Letters
Publication statusPublished - 30 Apr 2011


  • Databases
  • Role-Based Access Control
  • Safety/security in digital systems
  • Uncertainty


Dive into the research topics of 'Fuzzy role-based access control'. Together they form a unique fingerprint.

Cite this