The Logic of XACML

Carroline Dewi Puspa Kencana Ramli, Hanne Riis Nielson, Flemming Nielson

    Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

    Abstract

    We study the international standard XACML 3.0 for describing security access control policy in a compositional way. Our main contribution is to derive a logic that precisely captures the idea behind the standard and to formally define the semantics of the policy combining algorithms of XACML. To guard against modelling artefacts we provide an alternative way of characterizing the policy combining algorithms and we formally prove the equivalence of these approaches. This allows us to pinpoint the shortcoming of previous approaches to formalization based either on Belnap logic or on D -algebra.
    Original languageEnglish
    Title of host publicationFormal Aspects of Component Software : 8th International Symposium, FACS 2011, Oslo, Norway, September 14-16, 2011, Revised Selected Papers
    PublisherSpringer
    Publication date2012
    Pages205-222
    ISBN (Print)978-3-642-35742-8
    ISBN (Electronic)978-3-642-35743-5
    DOIs
    Publication statusPublished - 2012
    Event8th International Symposium on Formal Aspects of Component Software (FACS 2011) - Oslo, Norway
    Duration: 14 Sep 201116 Sep 2011
    Conference number: 8
    http://facs2011.ifi.uio.no/

    Conference

    Conference8th International Symposium on Formal Aspects of Component Software (FACS 2011)
    Number8
    CountryNorway
    CityOslo
    Period14/09/201116/09/2011
    Internet address
    SeriesLecture Notes in Computer Science
    Volume7253
    ISSN0302-9743

    Fingerprint Dive into the research topics of 'The Logic of XACML'. Together they form a unique fingerprint.

    Cite this