@inproceedings{6626c2fc4c21421ca3ea62ed318b4baa,
title = "Specification and classification of role-based authorization policies",
abstract = "Constraints are an important aspect of role-based access control (RBAC). Although the importance of constraints in RBAC has been recognized for a long time, they have not received much attention. In this paper we classify RBAC constraints into two major classes called prohibition constraints and obligation constraints. To specify these constraints, we utilize a formal language, named RCL2000. In this paper we show that prohibition, cardinality, and obligation constraints can be also represented in RCL2000.",
keywords = "Access control, Authorization, Collaborative work, Computer crime, Computer errors, Conferences, Costs, Formal languages, Permission, Specification languages",
author = "Ahn, {G. J.}",
note = "Publisher Copyright: {\textcopyright} 2003 IEEE.; 12th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE 2003 ; Conference date: 09-06-2003 Through 11-06-2003",
year = "2003",
doi = "10.1109/ENABL.2003.1231408",
language = "English (US)",
series = "Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE",
publisher = "IEEE Computer Society",
pages = "202--207",
booktitle = "Proceedings - 12th IEEE International Workshops on Enabling Technologies",
}