Business activities model and RBAC model

IBM® Security Identity Governance and Intelligence integrates and correlates the business activities model of an organization and the RBAC model that IBM Security Identity Governance and Intelligence is based on.

Business activity is an innovative key concept for modeling a specific task or set of tasks by defining a specific part of a generic business process. A process can be structured as a set of activities.

An activity identifies an operation or a uniform set of operations that the user can perform.

A generic business process is structured through a set of activities. Each activity can be subdivided into subactivities. Multiple activities can be grouped to form a macro-activity. An activity hierarchy is defined and organized as a tree structure, an activity tree.

Each activity requires one or more entitlements. An entitlement is the permission that a user needs to perform the activity.

In the RBAC model, a role is a particular type of entitlement that can be assigned to a user. The role and can have multiple permissions that are arranged in a hierarchy.

By linking the business model to the RBAC model, each activity can be aggregated to the necessary entitlements or permissions.