There are two main ways to implement security in Oracle E-Business Suite: “traditional” Oracle E-Business Suite responsibility-based security (usually referred to as “function security”) and Role-Based Access Control (RBAC).
One of the main purposes of a responsibility is to provide access to a menu of functions.
For the simplest case of responsibility-based security, a menu is attached to a responsibility, and then a responsibility is assigned to a user.
At that point, the user has access to all of the functions attached to the menu through the responsibility.
Note that if the Grant check box is not checked for a particular function, the user cannot access that function.
Role-Based Access Control (RBAC)
Role-Based Access Control (RBAC) builds upon responsibility-based security.
For More Detailed Information, Please check below references:
New Whitepaper: Function Security + Role-Based Access Control in Oracle EBS
Function Security and Role-Based Access Control (RBAC) in Oracle E-Business Suite [ID 1537100.1]