This paper presents XPA (XACML Policy Analyzer), an open source IDE (Integrated Development Environment) for testing, debugging, and mutating XACML 3.0 policies. XACML is an OASIS standard for specifying attributebased access control policies. XPA provides a variety of new techniques for generating test cases from policies, localizing bugs in faulty policies, and repairing faulty policy elements. XPA has been applied to numerous XACML policies from the literature and real-world applications. These policies have been used to quantitatively evaluate the effectiveness of various testing and debugging methods. For system developers and administrators, XPA is a practical IDE for developing dependable XACML policies. For access control researchers, XPA offers a versatile toolkit for studying and evaluating new testing, debugging, and verification techniques.
This document was originally published in Proceedings of the International Conference on Software Engineering and Knowledge Engineering, SEKE by Knowledge Systems Institute Graduate School. Copyright restrictions may apply. doi: 10.18293/SEKE2018-027
Shrestha, Roshan; Peng, Shuai; Lehmbecker, Turner; and Xu, Dianxiang. (2018). "XPA: An Open Source IDE for XACML Policies". Proceedings of the International Conference on Software Engineering and Knowledge Engineering, SEKE, 2018-July, 188-192. http://dx.doi.org/10.18293/SEKE2018-027