%0 Journal Article
%T A FORMAL SEMANTIC MODEL FOR THE ACCESS SPECIFICATION LANGUAGE RASP
%A Mark Evered
%J International Journal of Cyber-Security and Digital Forensics
%D 2012
%I Society of Digital Information and Wireless Communications (SDIWC)
%X The access specification language RASP extends traditional role-based access control (RBAC) concepts to provide greater expressive power often required for fine-grained access control in sensitive information systems. Existing formal models of RBAC are not sufficient to describe these extensions. In this paper, we define a new model for RBAC which formalizes the RASP concepts of controlled role appointment and transitions, object attributes analogous to subject roles and a transitive role/attribute derivation relationship.
%U http://sdiwc.net/digital-library/web-admin/upload-pdf/00000302.pdf