Skip to main content

Introduction to XACML

What is XACML?

XACML "eXtensible Access Control Markup Language" is an open standard XML based language. The standard defines a declarative fine-grained, attribute-based access control policy language, an architecture, and a processing model describing how to evaluate access requests according to the rules defined in policies. (*)

XACML policy language: is used to describe general access control requirements

XACML request/response protocol: used to query a decisioning engine that evaluates real-world access requests against existing XACML policies.

XACML reference architecture: provides a standard for the deployment of necessary software modules to achieve efficient enforcement of XACML policies.

To know more about XACML, read XACML 2.0 Standard Specification

Using the XACML addon it is possible to add access controls XACML standard to Soffid console. In this case, Soffid can be able to add more complex and restricted rules to the authorizations.

(*) https://en.wikipedia.org/wiki/XACML

Back to top