A language for specifying role-based access control (RBAC) policies is presented. The language is designed to support the range of access control policies of commercial object systems. The basic structures of RBAC, such as role, users and permission, are present in the language as basic constructs. Examples are given in the language of access control situations, such as static and dynamic separation of duty, delegation and joint action based access policies. The language is flexible and is able to capture meta-level operations. The language also provides a mechanism for tracking actions and basing access control decisions on past events.
CITATION STYLE
Hitchens, M., & Varadharajan, V. (2001). Tower: A language for role based access control. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 1995, pp. 88–106). Springer Verlag. https://doi.org/10.1007/3-540-44569-2_6
Mendeley helps you to discover research relevant for your work.