Update authorization section

to refer to the new BCP-003-02 section and add a note about the "." character

Author: cristian-recoseanu

docs/Security and authorization.md

@@ -1,10 +1,14 @@
 # Security and authorization
 
-Authorization and transport security features described in the BCP-03-XX suite and in IS-10 are used to secure and authorize this protocol.
+Authorization and transport security features described in the BCP-003 family and in IS-10 are used to secure and authorize this protocol.
 
 The relevant documents can be found here:
 
 - [AMWA BCP-003-01 Secure Communication in NMOS Systems](https://specs.amwa.tv/bcp-003-01)
 - [AMWA BCP-003-02 Authorization in NMOS Systems](https://specs.amwa.tv/bcp-003-02)
 - [AMWA BCP-003-03 Certificate Provisioning in NMOS Systems](https://specs.amwa.tv/bcp-003-03)
 - [AMWA IS-10 NMOS Authorization Specification](https://specs.amwa.tv/is-10)
+
+More specifically [BCP-003-02](https://specs.amwa.tv/bcp-003-02/branches/publish-is-12/docs/Authorization_Practice.html#is-12---control-protocol) has a dedicated section for how JSON Web Tokens can be created for IS-12.
+
+Please note, the `.` character is specifically used as a delimiter in role paths included in the read/write claims, so it cannot be used inside object roles.