XPA: An Open Source IDE for XACML Policies

Document Type

Conference Proceeding

Publication Date





This paper presents XPA (XACML Policy Analyzer), an open source IDE (Integrated Development Environment) for testing, debugging, and mutating XACML 3.0 policies. XACML is an OASIS standard for specifying attributebased access control policies. XPA provides a variety of new techniques for generating test cases from policies, localizing bugs in faulty policies, and repairing faulty policy elements. XPA has been applied to numerous XACML policies from the literature and real-world applications. These policies have been used to quantitatively evaluate the effectiveness of various testing and debugging methods. For system developers and administrators, XPA is a practical IDE for developing dependable XACML policies. For access control researchers, XPA offers a versatile toolkit for studying and evaluating new testing, debugging, and verification techniques.


The published title is “XPA: An Open Soruce IDE for XACML Policies”.

Copyright Statement

This document was originally published in Proceedings of the International Conference on Software Engineering and Knowledge Engineering, SEKE by Knowledge Systems Institute Graduate School. Copyright restrictions may apply. doi: 10.18293/SEKE2018-027