XACML for Authorization

standardized, attribute based, externalized, fine-grained and dynamic authorization for enterprise applications

Month – October 2011

XACML reference architecture

The reference architecture proposes a standard for deployment of necessary software modules within an infrastructure. Policy Decision Point (PDP)evaluates policies against access requests provided by Policy Enforcement Points (PEP). To provide the decisions, PDP may also need to query a Policy Information Point (PIP) to gather descriptive attributes about the user or any other missing […]

Why we need XACML ?

Most of the organizations are still using legacy system with in build authorization logics. Some times, one organization contains large number of information systems and applications that each system or application uses their own way of authorizing. When it comes to today, authorization has become more complex. Because users within organization as well as outside the […]

What is XACML ?

XACML(eXtensible Access Control Markup Language) is an XML-based language for access control that has been standardized by the Technical Committee of the OASIS consortium. XACML is much popular as a fine grain authorization method among the community. But there are lot of aspect of XACML other than just a fine grain authorization mechanism. Although XACML was introduced as […]

XACML for Authorization © 2015 Frontier Theme