Skip to main content

XACML

XACML eXtensible Access Control Markup Language

Introduction to XACML

What is XACML? XACML "eXtensible Access Control Markup Language" is an open standard XML based l...

How to install XACML in Soffid

Installation Download Please download the Soffid XACML add-on. You can download it at the foll...

Policy Enforcement Point (PEP)

Description The PEP, Policy enforcement point,  is a component of policy-based management, where...

Policy Decision Point (PDP)

Definition The PDP, Policy Decision Point, is in charge of evaluating the defined rules. The Pol...

XACML Rule combining algorithm

Definition The rule-combining algorithm defines a procedure for arriving at an authorization d...

Soffid XACML Editor

Soffid XACML Editor

XACML Editor

Description Soffid Console provides a graphical interface, with a hierarchy structure, that allo...

Policy set

Description A PolicySet is a container that can hold other Policies or PolicySets, as well as ...

Policy

Description A Policy represents a single access control policy, expressed through a set of Rul...

Policy reference

Description The policy reference is used to reference a policy element. The reference is made by...

Policy set reference

Description The policy set reference is used to reference a policy set element. The reference is...

Target

Description In XACML all the attributes are categorized into four main categories: Subjects ...

Rules

Description A rule is the most elementary unit of policy. It may exist in isolation only withi...

Variables

Description Variables are the elements to define functions that may be used througthout the po...

Obligations

Description XACML defines obligations as actions that have to be returned to the PEP with the ...

Conditions

Description Condition represents a Boolean expression that refines the applicability of the ru...

Expressions

Description The Expression signifies that an element that extends the ExpressionType and is a ...

XACML Examples

XACML Examples

Example Web PEP

Web Policy Enforcement Point Use case example We want to define a policy to restrict access to ...

Example Role centric PEP

Role centric Enforcement Point Use case example We want to define a policy to restrict access t...

Example Dynamic role PEP

Dynamic role Enforcement Point Use case example We want to define a policy to restrict access t...

Example Password Vault PEP

Password Vault Policy Enforcement Point Use case example 1 We want to define a policy to restri...
Back to top