Ferraiolo, D. F., Barkly, J. F. and Kuhn, D. R.: A role based access control model and reference implementation within a corporate inter net, ACM Trans. Information Systems Security, Vol.2, No.1, pp. 34-64(1999).
Joshi, J. B. D., Aref, W. G., Ghafoor, A. and Spafford, E. H.: Security models for web based applications, Comm. ACM, Vol.44, No.2, pp. 38-44(2001).
Sandhu, R.: Rational for the RBAC96 family of access control models, Proc.1st ACM Work-shop on Role-based Access Control (1996).
Sandhu, R., Bhamidipati, V. and Munawer, O.: The ARBAC97 model for role-based administration of roles, ACM Trans. Information and System Security, Vol.2, No.1, pp. 105-135(1999).
Chandramouli, R.: A Framework for Multiple Authorization Types in a Healthcare Application System, 17th Annual Computer Security Applications Conference (ACSAC)(2001).