Manual network configuration

In the following subsections, we define the core RiBAC model that extends traditional RBAC with the notion of interaction permissions. We also provide a hierarchical version of the model to leverage hierarchical structures for permission inheritance. It is followed by a constrained RiBAC model.

Depending on the manual network configuration, various objects could exist in the environment which needs to be accessed by agents. The valid pairs objects (OBS) and operations on them (OPS) form the object-oriented permissions (OOPRMS). Roles are authorized for object-oriented permissions that are assigned to them through the object-oriented permission assignment relation (OOPA).