docs: add prelim notes on ReBAC

author: mo khan <mo@mokhan.ca> 2025-03-14 10:57:45 -0600
committer: mo khan <mo@mokhan.ca> 2025-03-14 10:57:45 -0600
commit: d034240ecdffaaf7c50b740a3958f80a07cbd6b3 (patch)
tree: 1a904426fd95bee7fd57e369394b1d78ba602bf9 /doc
parent: bd8de4c937c8aff7ca5d812009176828809a2fe6 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/doc/share/authz/README.md b/doc/share/authz/README.md
index 50aeb4c0..52d330f8 100644
--- a/doc/share/authz/README.md
+++ b/doc/share/authz/README.md
@@ -147,5 +147,19 @@ directly into each transaction_.
 
 ### Relationship-Based Access Control (ReBAC)
 
+> Authorization decisions are based on the relationship between the resource owner
+> and the resource accessor in a social network maintained by the protection
+> system.
+
+A Social Network System (SNS) maintains a social network for at least two reason:
+
+1. It is used by the users to navigate the information space of the system
+2. The social network is used as a basis for formulating the access control
+   policies of user contributed resources.
+
+References
+
+* [Relationship-Based Access Control: Protection Model and Policy Language by Philip W. L. Fong](https://cspages.ucalgary.ca/~pwlfong/Pub/codaspy2011.pdf)
+
 ### Attribute-Based Access Control (ABAC)
author	mo khan <mo@mokhan.ca>	2025-03-14 10:57:45 -0600
committer	mo khan <mo@mokhan.ca>	2025-03-14 10:57:45 -0600
commit	d034240ecdffaaf7c50b740a3958f80a07cbd6b3 (patch)
tree	1a904426fd95bee7fd57e369394b1d78ba602bf9 /doc
parent	bd8de4c937c8aff7ca5d812009176828809a2fe6 (diff)