Free State-Of-The-Art XACML Editor: A Powerful Graphical and Text-Based XACML Editing Tool

Thursday, July 13, 2017

After reading below, learn about the latest on the Security Policy Tool - XACML Editor by checking out our more recent news piece here. There you will find a list of improved features and a brief introductory video of the XACML Editor in action.

eXtensible Access Control Markup Language (XACML) is a verbose and very complex language. When policy authors develop several XACML policies at the same time it becomes increasingly difficult to stay organized and avoid errors.

In a text-based editor, creating and editing policies can become difficult due to the high possibility of accidental typing errors occurring. In a graphical XACML editor, policy editing does become greatly simplified. However, the current graphical XACML editors have several limitations, such as:

  • Graphical interference causing difficulty in viewing and tracking XACML elements in text 
  • Difficulty viewing all of the XACML elements in a policy 
  • Unable to fully conform all XACML 2.0 and 3.0 specifications (e.g., data types, functions, and algorithms).

Incorporated in InfoBeyond’s Security Policy Tool, is a new state-of-the-art XACML Policy Editor. It provides user-friendly functions that allow you to import, convert, edit, verify and export XACML easier than ever before.  


Table 1: Comparing Security Policy Tool - XACML Policy Editor

 XACML Editing FunctionsUML XACML Editor, EasyXACML, AximaticsSecurity Policy Tool - XACML Policy Editor
Graphical Editing Yes Yes
Text Editing No Yes
Synchronized Graphical and Text Editing  No Yes
Support All XACML 2.0 and 3.0 Policy Elements No (missing data types or algorithms) Fully supports conversion from 2.0 to 3.0
Overview of an Entire Policy/Policy Set No Yes
Policy Verification No or Limited Yes
Convert Policies into ABAC Model  No Yes - will be provided 

 XACML Policy Editor (Screenshot)

InfoBeyond’s XACML editor has the following unique functions:

  • Graphical/Text Policy Editor: The currently available graphical policy editors do not have the flexibility to allow editing of policies in both graphical and text-based formats. Infobeyond’s XACML Policy Editor automatically synchronizes between both graphical and text-based formats allowing you to use both. This, in turn, provides the user a much clearer view of all their XACML elements. The XACML policies can be created as new or imported as an existing policy into the editor. 

  • Security Model Converter: Upon importing policies into InfoBeyond’s XACML Policy Editor, the policies can be verified and tested in various security models such as Attribute Based Access Control (ABAC) model to detect leaks or other flaws. After testing the policy in a security model (e.g., ABAC) composed by Security Policy Tool, the policy can be automatically converted back into XACML format for quick portability.

  • XACML 2.0 and 3.0 Compatibility:  Supports all functions of XACML 2.0 and 3.0

Infobeyond’s powerful and user-friendly XACML Policy Editor is especially useful for organizations who utilize a large number of access control policies.

Download our Security Policy Tool Demo to try our XACML Policy Editor, today!