Abstract: After analyzing the access control requirement of a virtual enterprise, a cross enterprise RBAC (CE-RBAC) model is defined by extending the traditional role based access control (RBAC) model. Through CE-RBAC model, the secure cross-enterprise access control can be easily implemented in virtual enterprise environment.