TY  - CHAP
T2  - Engineering Secure Software and Systems
A1  - Masi, Massimiliano
A1  - Pugliese, Rosario
A1  - Tiezzi, Francesco
SP  - 60
Y1  - 2012///
T3  - Lecture Notes in Computer Science
EP  - 74
PB  - Springer
SN  - 978-3-642-28165-5
N2  - We propose a formal account of XACML, an OASIS standard adhering to the Policy Based Access Control model for the specifica- tion and enforcement of access control policies. To clarify all ambiguous and intricate aspects of XACML, we provide it with a more manageable alternative syntax and with a solid semantic ground. This lays the basis
for developing tools and methodologies which allow software engineers to easily and precisely regulate access to resources using policies. To demonstrate feasibility and effectiveness of our approach, we provide a software tool, supporting the specification and evaluation of policies and access requests, whose implementation fully relies on our formal development.
N1  - PBAC, XACML, formal semantics, CASE tools - 
Proceedings of the 2nd International Symposium on Engineering Secure Software and Systems (ESSoS)
UR  - http://dx.doi.org/10.1007/978-3-642-28166-2_7
TI  - Formalisation and Implementation of the XACML Access Control Mechanism
ID  - eprints1575
AV  - public
ER  -