A security model in which access to resources is granted based on a user's role within an organization.