The Logic of XACML

Carroline Dewi Puspa Kencana Ramli, Hanne Riis Nielson, Flemming Nielson

    Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

    532 Downloads (Pure)


    We study the international standard XACML 3.0 for describing security access control policy in a compositional way. Our main contribution is to derive a logic that precisely captures the idea behind the standard and to formally define the semantics of the policy combining algorithms of XACML. To guard against modelling artifacts we provide an alternative way of characterizing the policy combining algorithms and we formally prove the equivalence of these approaches. This allows us to pinpoint the shortcoming of previous approaches to formalization based either on Belnap logic or on D-algebra.
    Original languageEnglish
    Title of host publicationProceedings of FACS 2011
    Publication date2011
    Publication statusPublished - 2011
    Event8th International Symposium on Formal Aspects of Component Software (FACS 2011) - Oslo, Norway
    Duration: 14 Sep 201116 Sep 2011
    Conference number: 8


    Conference8th International Symposium on Formal Aspects of Component Software (FACS 2011)
    Internet address


    Dive into the research topics of 'The Logic of XACML'. Together they form a unique fingerprint.

    Cite this