Toggle Main Menu Toggle Search

Open Access padlockePrints

Reasoning about XACML policies using CSP

Lookup NU author(s): Dr Jeremy Bryans



In this work we explore the use of process algebra in formalising and analysing access control policies. We do this by considering a standard access control language (XACML) and show how the core concepts in the language can be represented in CSP. We then show how properties of these policies may also be described in CSP, and how model checking may be used to verify that a policy meets the property. We further consider how we may introduce a notion of workflow into this framework, and show that a simple appreciation of the workflow context may limit the things we need to verify about a policy.

Publication metadata

Author(s): Bryans J

Publication type: Report

Publication status: Published

Series Title: School of Computing Science Technical Report Series

Year: 2005

Pages: 18

Print publication date: 01/07/2005

Source Publication Date: July 2005

Report Number: 924

Institution: School of Computing Science, University of Newcastle upon Tyne

Place Published: Newcastle upon Tyne