@incollection{eprints1575,
       publisher = {Springer},
          series = {Lecture Notes in Computer Science},
           pages = {60--74},
          number = {7159},
       booktitle = {Engineering Secure Software and Systems},
            note = {PBAC, XACML, formal semantics, CASE tools - 
Proceedings of the 2nd International Symposium on Engineering Secure Software and Systems (ESSoS)},
           title = {Formalisation and Implementation of the XACML Access Control Mechanism},
            year = {2012},
          author = {Massimiliano Masi and Rosario Pugliese and Francesco Tiezzi},
             url = {http://eprints.imtlucca.it/1575/},
        abstract = {We propose a formal account of XACML, an OASIS standard adhering to the Policy Based Access Control model for the specifica- tion and enforcement of access control policies. To clarify all ambiguous and intricate aspects of XACML, we provide it with a more manageable alternative syntax and with a solid semantic ground. This lays the basis
for developing tools and methodologies which allow software engineers to easily and precisely regulate access to resources using policies. To demonstrate feasibility and effectiveness of our approach, we provide a software tool, supporting the specification and evaluation of policies and access requests, whose implementation fully relies on our formal development.}
}