XACML2mCRL2: automatic transformation of XACML policies into mCRL2 specifications

Hamed Arshad, Ross Horne, Christian Johansen, Olaf Owe, Tim A.C. Willemse

Research output: Contribution to journalArticlepeer-review

34 Downloads (Pure)

Abstract

The eXtensible Access Control Markup Language (XACML) is a popular OASIS standard for the specification of fine-grained access control policies. However, the standard does not provide a proper solution for the verification of XACML access control policies before their deployment. The first step for the formal verification of XACML policies is to formally specify such policies. Hence, this paper presents XACML2mCRL2, a tool for the automatic translation of XACML access control policies into mCRL2. The mCRL2 specifications generated by our tool can be used for formal verification of important properties of access control policies, such as completeness or inconsistency, using the well-known mCRL2 toolset.
Original languageEnglish
Article number103046
Number of pages10
JournalScience of Computer Programming
Volume232
Early online date31 Oct 2023
DOIs
Publication statusPublished - 31 Jan 2024

Keywords

  • XACML
  • mCRL2
  • formal verification
  • access control

Fingerprint

Dive into the research topics of 'XACML2mCRL2: automatic transformation of XACML policies into mCRL2 specifications'. Together they form a unique fingerprint.

Cite this