This project determines the applicability of Role Based Access Control (RBAC) to health care information. While it is generally accepted that RBAC is more suited to health care that others, the question remains as to whether RBAC meets all of the requirements for the security of health care information. Moreover, there are several variations on the RBAC model and there is the question of which variations are most suitable for health care information.
Contact: John Barkley - barkley@sst.ncsl.nist.gov, (301) 975-3346