XML Security Standard Ratified

OASIS gives the nod to Extensible Access Control Markup Language, or XACML.

The Extensible Access Control Markup Language (XACML) has been ratified as an open standard by a major standards body.

The Organization for the Advancement of Structured Information Standards (OASIS) announced Tuesday that its members had approved XACML as a standard. XACML is a security standard for expressing XML policies for information access over the Internet. Using XACML, developers can enforce policies for information access.

XACML joins several other OASIS security standards including the Security Assertion Markup Language (SAML), which was ratified in November, as well as other OASIS work-in-progress specifications like WS-Security, the Service Provisioning Markup Language (SPML), Digital Signature Services (DSS) and Public Key Infrastructure (PKI).

OASIS member companies including Entrust, IBM Corp., Hewlett-Packard Co., Baltimore Technologies plc, Oblix Inc., OpenNetwork Technologies Inc., Quadrasis Inc., Sterling Commerce Inc. and Sun Microsystems Inc. among others helped develop the XACML specification.

Sun Tuesday announced the contribution of its XACML implementation to the open source community. Suns Internet Security Research Group, part of Sun Microsystems Laboratories, developed the companys XACML implementation, Sun officials said.

Suns implementation is available here.