Authorization in Kubernetes (need help regarding this)

I am new a Researcher. I am doing my first research on Authorization in Kubernetes. I need to know proper the authorization in Kubernetes. As i have already studied the authorization process Kubernetes but i am unable to find how authorization policies work in Kubernetes (are policies in hierarchical). kindly give me some direction regarding this as this is new research area and i have not much research papers about this.