XACML2mCRL2: automatic transformation of XACML policies into mCRL2 specifications

Hamed Arshad, Ross Horne, Christian Johansen, Olaf Owe, Tim A.C. Willemse

Research output: Contribution to journalArticlepeer-review

7 Downloads (Pure)


The eXtensible Access Control Markup Language (XACML) is a popular OASIS standard for the specification of fine-grained access control policies. However, the standard does not provide a proper solution for the verification of XACML access control policies before their deployment. The first step for the formal verification of XACML policies is to formally specify such policies. Hence, this paper presents XACML2mCRL2, a tool for the automatic translation of XACML access control policies into mCRL2. The mCRL2 specifications generated by our tool can be used for formal verification of important properties of access control policies, such as completeness or inconsistency, using the well-known mCRL2 toolset.
Original languageEnglish
Article number103046
Number of pages10
JournalScience of Computer Programming
Early online date31 Oct 2023
Publication statusE-pub ahead of print - 31 Oct 2023


  • mCRL2
  • formal verification
  • access control


Dive into the research topics of 'XACML2mCRL2: automatic transformation of XACML policies into mCRL2 specifications'. Together they form a unique fingerprint.

Cite this