ISO 21298:2017定义了一个表达功能和结构角色的模型，并将其填充为一组基本角色，供国际卫生应用中使用。角色通常分配给作为参与者的实体。这将侧重于人员的角色（例如卫生专业人员的角色）及其在提供护理（例如护理对象）方面的角色。 角色可以是结构性的（例如，持证全科医生、非持证转录员等），也可以是功能性的（例如，作为治疗团队成员的提供者、主治医生、处方医生等）。结构性角色相对来说是静态的，通常持续多年。它们处理以复杂概念表示的实体之间的关系。功能性角色与行动的实现息息相关，具有高度的动态性。它们通常以精细的分解级别表示- 粒度概念。 尽管权限管理和访问控制是本文档的应用之一，但本文档中提到的角色并不限于权限管理目的。本文档不涉及与权限相关的规范。本文档将角色和权限视为单独的构造。有关与权限、策略和访问控制的关系的更多详细信息，请参见ISO 22600。

ISO 21298:2017 defines a model for expressing functional and structural roles and populates it with a basic set of roles for international use in health applications. Roles are generally assigned to entities that are actors. This will focus on roles of persons (e.g. the roles of health professionals) and their roles in the context of the provision of care (e.g. subject of care). Roles can be structural (e.g. licensed general practitioner, non-licensed transcriptionist, etc.) or functional (e.g. a provider who is a member of a therapeutic team, an attending physician, prescriber, etc.). Structural roles are relatively static, often lasting for many years. They deal with relationships between entities expressed at a level of complex concepts. Functional roles are bound to the realization of actions and are highly dynamic. They are normally expressed at a decomposed level of fine-grained concepts. Roles addressed in this document are not restricted to privilege management purposes, though privilege management and access control is one of the applications of this document. This document does not address specifications related to permissions. This document treats the role and the permission as separate constructs. Further details regarding the relationship with permissions, policy, and access control are provided in ISO 22600.