Presentation is loading. Please wait.

Presentation is loading. Please wait.

XACML eXtensible Access Control Markup Language XML World 2001 17-19 September San Francisco, CA Simon Y. Blackwell Chairperson, XACML Technical Committee.

Published byGertrude Stone Modified over 9 years ago

Similar presentations

Presentation on theme: "XACML eXtensible Access Control Markup Language XML World 2001 17-19 September San Francisco, CA Simon Y. Blackwell Chairperson, XACML Technical Committee."— Presentation transcript:

1 XACML eXtensible Access Control Markup Language XML World 2001 17-19 September San Francisco, CA Simon Y. Blackwell Chairperson, XACML Technical Committee OASIS CTO, Psoom, Inc.

2 Simon Y. Blackwell, CTO XACML An XML specification for the expression of access control policies that can: –Be applied to anything referenced from XML –Refer to the content of the target of control –Be based on request context variables

3 Simon Y. Blackwell, CTO XACML Participants Authentify CrossLogic Entitlenet Entrust HP IBM Jamcracker Netegrity Oblix Psoom Reuters Tivoli University of Milan Verisign

4 Simon Y. Blackwell, CTO Cross Committee Representation SAML ebXML

5 Simon Y. Blackwell, CTO Why XACML? Promote Interoperability Ensure Uniformity Ease Development Control XML Fragments

6 Simon Y. Blackwell, CTO Promote Interoperability Multiple vendor security solutions in one enterprise Shared policy in business partnerships

7 Simon Y. Blackwell, CTO Ensure Uniformity Distributed, heterogeneous security systems with inconsistent policy –Multiple data base vendors –Custom applications –Firewalls –Operating systems

8 Simon Y. Blackwell, CTO Ease Development Separate policy from applications Standard means for policy to refer to the content of its target and the context of a request

9 Simon Y. Blackwell, CTO Control XML Fragments XML documents are frequently used to store information with different security needs –Health records –Contracts

10 Simon Y. Blackwell, CTO Features Layered architecture, e.g. –Users -> Groups -> Roles –Targets -> Target Security Levels –Standard Rights -> User Defined Rights XPATH Provisional Actions

11 Simon Y. Blackwell, CTO Demonstrations IBM XACL University of Milan XAS Others …

12 Simon Y. Blackwell, CTO Schedule December 2001 Candidate Specification March 2002 v1.0 (grammar focus) TBD (processing and protocols)

13 Simon Y. Blackwell, CTO Interim Work To Explore Standards Contributors –IBM XACL http://alphaworks.ibm.com/tech/xmlsecuritysuite –University of Milan XAS http://sansone.crema.unimi.it/~samarati/Papers/www9.pdf –CrossLogix (proprietary) http://www.crosslogix.com Other work –http://www.xrml.org (digital rights management)http://www.xrml.org –http://www.odrl.nethttp://www.odrl.net Extensive Reference Information –http://www.oasis-open.org/committees/xacml/docs/docs.shtmlhttp://www.oasis-open.org/committees/xacml/docs/docs.shtml

14 Simon Y. Blackwell, CTO For More Information http://www.xacml.org Visit, Participate, Contribute

Download ppt "XACML eXtensible Access Control Markup Language XML World 2001 17-19 September San Francisco, CA Simon Y. Blackwell Chairperson, XACML Technical Committee."

Similar presentations

Presented to: By: Date: Federal Aviation Administration Registry/Repository in a SOA Environment SOA Brown Bag #5 SWIM Team March 9, 2011.

Presented to: By: Date: Federal Aviation Administration Registry/Repository in a SOA Environment SOA Brown Bag #5 SWIM Team March 9, 2011.
File: ebusiness_ref.PPT 1 Yogi Schulz e-Business Projects Web Services Resources Reference Section 22 Copyright © 2002 by Corvelle Management Consultants.

File: ebusiness_ref.PPT 1 Yogi Schulz e-Business Projects Web Services Resources Reference Section 22 Copyright © 2002 by Corvelle Management Consultants.
Click to edit Master title style HR-XML Interoperation with OASIS SPML V2 An Integration Use Case Matt Tobiasen (HR-XML) Gary Cole (OASIS)

Click to edit Master title style HR-XML Interoperation with OASIS SPML V2 An Integration Use Case Matt Tobiasen (HR-XML) Gary Cole (OASIS)
All Contents © 2003 Burton Group. All rights reserved. Identity Management Market Update Prepared for Cal State Universities Mike Neuenschwander senior.

All Contents © 2003 Burton Group. All rights reserved. Identity Management Market Update Prepared for Cal State Universities Mike Neuenschwander senior.
IEEE DREL Workshop 20 June 2002 Brad Gandee XrML Standards Evangelist The Language for Digital Rights The Language for Digital Rights ™ Enabling Interoperability:

IEEE DREL Workshop 20 June 2002 Brad Gandee XrML Standards Evangelist The Language for Digital Rights The Language for Digital Rights ™ Enabling Interoperability:
Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.

Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.
©2014 Software AG. All rights reserved. What’s New in Alfabet Release 9.6 April 2014.

©2014 Software AG. All rights reserved. What’s New in Alfabet Release 9.6 April 2014.
Authz work in GGF David Chadwick

Authz work in GGF David Chadwick
Open Document Format and the Massachusetts Open Standards Initiative Information Technology Division Commonwealth of Massachusetts.

Open Document Format and the Massachusetts Open Standards Initiative Information Technology Division Commonwealth of Massachusetts.
Web Services Security Multimedia Information Engineering Lab. Yoon-Sik Yoo.

Web Services Security Multimedia Information Engineering Lab. Yoon-Sik Yoo.
Carl A. Foster.  What is SAML?  Security Assertion and Markup Language is an XML-based standard for exchanging authentication and authorization between.

Carl A. Foster.  What is SAML?  Security Assertion and Markup Language is an XML-based standard for exchanging authentication and authorization between.
ΗΛΕΚΤΡΟΝΙΚΟ ΕΜΠΟΡΙΟ Web Services Overview Mary Grammatikou www.netmode.ntua.gr 9/06/2009.

ΗΛΕΚΤΡΟΝΙΚΟ ΕΜΠΟΡΙΟ Web Services Overview Mary Grammatikou 9/06/2009.
Securing Web Services Using Semantic Web Technologies Brian Shields PhD Candidate, Department of Information Technology, National University of Ireland,

Securing Web Services Using Semantic Web Technologies Brian Shields PhD Candidate, Department of Information Technology, National University of Ireland,
Www.oasis-open.org ebXML Registry Technical Committee Defining and managing interoperable registries and repositories Kathryn Breininger (TC Chair)The.

ebXML Registry Technical Committee Defining and managing interoperable registries and repositories Kathryn Breininger (TC Chair)The.
EbXML Registry Technical Committee n Defining and managing interoperable registries and repositories n The OASIS ebXML Registry TC develops specifications.

EbXML Registry Technical Committee n Defining and managing interoperable registries and repositories n The OASIS ebXML Registry TC develops specifications.
Www.oasis-open.org ebXML Registry Technical Committee Defining and managing interoperable registries and repositories Kathryn Breininger (TC Chair)The.

ebXML Registry Technical Committee Defining and managing interoperable registries and repositories Kathryn Breininger (TC Chair)The.
Web services security I

Web services security I
Secure Systems Research Group - FAU Web Services Standards Presented by Keiko Hashizume.

Secure Systems Research Group - FAU Web Services Standards Presented by Keiko Hashizume.
XACML Gyanasekaran Radhakrishnan. Raviteja Kadiyam.

XACML Gyanasekaran Radhakrishnan. Raviteja Kadiyam.
1 © Talend 2014 XACML Authorization Training Slides 2014 Jan Bernhardt Zsolt Beothy-Elo

1 © Talend 2014 XACML Authorization Training Slides 2014 Jan Bernhardt Zsolt Beothy-Elo

Similar presentations

Ads by Google