The advent of emerging technologies such as Web services, service-oriented architecture, and cloud computing has en-abled us to perform business services more efficiently and effectively. However, we still suffer from unintended secu-rity leakages by unauthorized services while providing more convenient services to Internet users through such a cutting-edge technological growth. Furthermore, designing and man-aging Web access control policies are often error-prone due to the lack of logical and formal foundation. In this paper, we attempt to introduce a logic-based policy management ap-proach for Web access control policies especially focusing on XACML (eXtensible Access Control Markup Language) policies, which have become the de facto stan...