- XACML
XACML stands for "eXtensible Access Control Markup Language". It is a declarative
access control policy language implemented inXML and a processing model, describing how to interpret the policies. It is a replacement for IBM's "XML access control language" (XACL) [cite web|author=Hada, Satoshi and Kudo, Michiharu|title=XML Access Control Language: Provisional Authorization for XML Documents|url=http://www.trl.ibm.com/projects/xml/xacl/xacl-spec.html|date=October 16 ,2000 |publisher=Tokyo Research Laboratory, IBM Research|accessdate=2008-06-08] which is no longer in development. [cite web|title=XACL|url=http://dret.net/glossary/xacl|publisher=Web and XML Glossary (dret.net)|accessdate=2008-06-08]Latest version 2.0 was ratified by OASIS
standards organization on 1 February 2005.As of 2007, version 3.0 is in preparation and will add generic attribute categories for the evaluation context and policy delegation profile (administrative policy profile).See also
*
Role-based access control
*Mandatory access control
*Discretionary access control
*PERMIS Notes
External links
* [http://xml.coverpages.org/xacml.html Extensible Access Control Markup Language]
* [http://www.oasis-open.org/committees/xacml/ OASIS XACML committee website]
* [http://www.oasis-open.org/committees/xacml/ipr.php OASIS declaration of issues with two software patents of IBM]
* [http://www.sics.se/spot/xacml_3_0.html SICS's implementation of the XACML 3.0 draft]
* [http://www.axiomatics.com/ Axiomatics implementation of the XACML 3.0 draft]
* [http://code.google.com/p/enterprise-java-xacml/ Google Code Enterprise Java XACML Implementation]
* [http://www.herasaf.org/ HERAS-AF: An Open Source Project providing an XACML-based Security Framework]
* [http://www.nsitonline.in/hemant/stuff/xacml/XACML%20Tutorial%20with%20a%20Use%20Case%20Scenario%20for%20Academic%20Institutions.htm XACML Tutorial with a Use Case Scenario for Academic Institutions]
Wikimedia Foundation. 2010.
