Abstract
The eXtensible Access Control Markup Language (XACML) is a popular OASIS standard for the specification of fine-grained access control policies. However, the standard does not provide a proper solution for the verification of XACML access control policies before their deployment. The first step for the formal verification of XACML policies is to formally specify such policies. Hence, this paper presents XACML2mCRL2, a tool for the automatic translation of XACML access control policies into mCRL2. The mCRL2 specifications generated by our tool can be used for formal verification of important properties of access control policies, such as completeness or inconsistency, using the well-known mCRL2 toolset.
Original language | English |
---|---|
Article number | 103046 |
Number of pages | 10 |
Journal | Science of Computer Programming |
Volume | 232 |
Early online date | 31 Oct 2023 |
DOIs | |
Publication status | Published - 31 Jan 2024 |
Keywords
- XACML
- mCRL2
- formal verification
- access control