%0 Journal Article
%T RATIONALE AND DESIGN OF THE ACCESS SPECIFICATION LANGUAGE RASP
%A Mark Evered
%J International Journal of Cyber-Security and Digital Forensics
%D 2012
%I Society of Digital Information and Wireless Communications (SDIWC)
%X In this paper we describe the formal specification language RASP for expressing fine-grained access control constraints in information systems. The design of the language is motivated by a number of IS case studies which demonstrate the complexity of the access constraints which arise if minimal (need-to-know) access is to be strictly enforced. RASP supports modularity, parameterization, role acquisition, constraint expressions and a symmetrical approach to role transitions and attribute transitions. No existing access control specification language supports all of these complex, realistic requirements.
%U http://sdiwc.net/digital-library/web-admin/upload-pdf/00000251.pdf