The Logic of XACML

Carroline Dewi Puspa Kencana Ramli, Hanne Riis Nielson, Flemming Nielson

    Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

    688 Downloads (Orbit)

    Abstract

    We study the international standard XACML 3.0 for describing security access control policy in a compositional way. Our main contribution is to derive a logic that precisely captures the idea behind the standard and to formally define the semantics of the policy combining algorithms of XACML. To guard against modelling artifacts we provide an alternative way of characterizing the policy combining algorithms and we formally prove the equivalence of these approaches. This allows us to pinpoint the shortcoming of previous approaches to formalization based either on Belnap logic or on D-algebra.
    Original languageEnglish
    Title of host publicationProceedings of FACS 2011
    Publication date2011
    Publication statusPublished - 2011
    Event8th International Symposium on Formal Aspects of Component Software (FACS 2011) - Oslo, Norway
    Duration: 14 Sept 201116 Sept 2011
    Conference number: 8
    http://facs2011.ifi.uio.no/

    Conference

    Conference8th International Symposium on Formal Aspects of Component Software (FACS 2011)
    Number8
    Country/TerritoryNorway
    CityOslo
    Period14/09/201116/09/2011
    Internet address

    Access to Document

    • FulltextAccepted author manuscript, 374 KB

    OpenUrl availability

    Full text

      Fingerprint

      Dive into the research topics of 'The Logic of XACML'. Together they form a unique fingerprint.
      View full fingerprint

      Cite this