Skip to Main Content
Role based access control (RBAC) has difficulty in covering open and decentralized multi-centric systems, since it has focused on controlling access to digital resources within closed system environments and it only deals with previously known user's access which is not adequate in today's Internet world. In order to overcome the limitations in RBAC and meet the access requirements in multi-domain environments, we propose a reputation and role based access control model called R2BAC. In this model, users can be assigned to local-roles, and are able to be assigned to foreign roles based on their reputations and local-roles. R2BAC does not preclude use of credentials thus it is well suited for open systems like the multi-domain environment where users' accesses are previous known in the local domain but unknown in foreign domains.