Admin Roles

Every role definition contains a set of roles, called Admin Roles, which processes performing this role are allowed to administrate. For many settings, e.g. the compatibility sets, additional privileges are required, which are explained below.

• adminroles(r:role):set of roles := set of administrated roles for role r
• administraterole$_{tn}$(p:process, r:role) := process p administrates settings of role r at time n

$$\mathrm{administraterole}_{tn}(\mathrm{p,r}) \Rightarrow\ r ... ...mathrm{adminroles}_{tn}(\mathrm{currentrole}_{tn}(\mathrm{p}))$$ (23)

The Admin Roles set of any role can only be changed by roles with Admin Type value Role Admin.

• changeadminroles$_{tn}$(p:process, r:role) := process p changes the set of admin roles of role r at time n

$$\mathrm{changeadminroles}_{tn}(\mathrm{p,r}) \Rightarrow\ \m... ...(\mathrm{currentrole}_{tn}(\mathrm{p})) = \mathrm{role\_admin}$$ (24)