OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

xacml message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Subject: XACML Revised Charter

This is the revised charter as it was adopted unanimously my a quorum of
voting members on the XACML conference call of July 15th:

Product of the XACML Technical Committee

The XACML Technical Committee will define a core XML schema for representing
authorization and entitlement policies, also called XACML.

Policy Target

The target of a policy (hereafter referred to as "target") can be any object
that can be referenced using XML.

Protocols and Bindings

The XACML Technical Committee will identify bindings to existing protocols
(e.g., XPath, LDAP), and define new protocols, if necessary, as means of
accessing and communicating the policies.


XACML is expected to address fine grained control of authorized activities,
the effect of characteristics of the access requestor, the protocol over
which the request is made, authorization based on classes of activities, and
content introspection (i.e. authorization based on both the requestor and
potentially attribute values within the target where the values of the
attributes may not be known to the policy writer). XACML is also expected to
suggest a policy authorization model to guide implementers of the
authorization mechanism.


XACML core schema is extensible for as yet unknown features


The XACML Technical Committee will define interoperability of XACML core
schema with other standards. To ensure work is not duplicated and standards
adoption is as simple as possible, XACML shall adopt as baseline documents
the work products of the
Security Services Technical Committee including but not limited to a Domain
Model and Glossary. Furthermore, Use Cases and Requirements documents will
share content that is common through normative references. The XACML TC
shall keep its work consistent with the work of the Security Services TC by
requesting enhancements to, modifications of, and cross-references from
Security Services TC documents through a formal liaison with the Security
Services TC. This liaison will include the regular sharing of deliverables
and status reports during teleconferences or at face-to-face meetings.

Simon Y. Blackwell 
Psoom, Inc. 
Voice & Fax: 415-762-9787 

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Powered by eList eXpress LLC