Oracle Fusion Applications handles security by addressing functional security as opposed to user security. Legacy applications focused on business users created an access profile for each user. This worked well when each user had a clearly defined set of tasks and there was a minimal overlap in the functionality between users.
Business and technology have evolved, such that application users have multiple roles. These roles and functions are overlapping and change over time. Hence, Oracle Fusion Applications have taken an approach that is role-based as opposed to user-based.
This approach to security uses the function and the data that it works on as the fundamental units of security. These functions can then be grouped together in various combinations to create higher-level groupings. However, this grouping does not change the atomic level at which Oracle Fusion Applications are secured.
This approach that secures both the business activity and...