Abstract In a role-based access control system with context roles (CR-RBAC), if context constraints are not satisfied, then a context role could not be activated by a user to execute operation on objects. But there are task dependencies among tasks in a workflow, if one task could not complete in time, then other tasks would be delayed. In this thesis, an approach to integrate CR-RBAC and I-RBAC, with applications to workflow systems, will be presented. In a workflow, when a user could not activate a context role to perform a task, an isolation role could be assigned to the user to execute the task temporarily, to continue execution of the workflow. However, the task still needs to be confirmed by using the context role. If the task could not be confirmed during a timeout period, the workflow must be rollbacked to an earlier state. An example document workflow was used to illustrate this model. It is assumed that the approval of documents must be performed inside the company. If there is an emergent document needs to be approved and the manager who has the permission to approve the document is not in the company, an isolation role could be assigned to the manager to approve the document temporarily. The approval must be confirmed when the context constraints are satisfied and the context role could be activated. Otherwise, the workflow has to be rollbacked. Keywords：Access Control、RBAC、CR-RBAC、I-RBAC、Workflow、Rollback