Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Amit Kumar (AmitK211)
Cognizant Technology Solutions
Technology Architect
Cognizant Technology Solutions
US
AmitK211 Member since 2014 25 posts
Cognizant Technology Solutions
Posted: Aug 15, 2019
Last activity: Dec 2, 2019
Posted: 15 Aug 2019 22:25 EDT
Last activity: 2 Dec 2019 17:52 EST
Closed

RBAC vs ABAC : Performance consideration and use cases

We have two access control mechanism, role based (RBAC) and attribute based (ABAC). When i think of uses cases, I wonder if I should use RBAC with access-when or ABAC. What are the best practice or recommendations for them? How system internally processes these access controls? Does one have any performance implications above other? Does ABAC has any exclusivity which can not be done using RBAC.

Please suggest and share your views.

To see attachments, please log in.
Low-Code App Development
Security

Posted: 5 years ago
Posted: 2 Dec 2019 17:52 EST
Marty Guyote (guyom) Senior Product Manager, Platform Security
Pegasystems Inc.
US

First, using Access Whens in RAROs (RBAC) to accomplish row-level security is very limited functionally in a variety of ways but especially in reports and in searches.  Second, enforcing row-level restrictions in ABAC policies should actually be better performing, since the policy conditions defined in ABAC are automatically included in the SQL generated by the Platform, and the DB can process these very efficiently.

 

To see attachments, please log in.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice