#XACML v3.0 Core and Hierarchical Role Based Access Control (RBAC) Profile Version 1.0 Committee Specification 02 published

OASIS is pleased to announce the approval and publication of a new Committee Specification by the members of the OASIS eXtensible Access Control Markup Language (XACML) TC:

XACML v3.0 Core and Hierarchical Role Based Access Control (RBAC) Profile Version 1.0
Committee Specification 02
23 October 2014

Overview:

This specification defines a profile for the use of XACML in expressing policies that use role based access control (RBAC). It extends the XACML Profile for RBAC Version 1.0 to include a recommended Attribute field for roles, but reduces the scope to address only “core” and “hierarchical” RBAC. This specification has also been updated to apply to XACML v3.0.

Description of the TC:

The XACML Technical Committee defines a core XML schema for representing authorization and entitlement policies.

URIs:
The prose specifications and related files are available here:

Editable source (Authoritative):
http://docs.oasis-open.org/xacml/3.0/rbac/v1.0/cs02/xacml-3.0-rbac-v1.0-...

HTML:
http://docs.oasis-open.org/xacml/3.0/rbac/v1.0/cs02/xacml-3.0-rbac-v1.0-...

PDF:
http://docs.oasis-open.org/xacml/3.0/rbac/v1.0/cs02/xacml-3.0-rbac-v1.0-...

Distribution ZIP file

For your convenience, OASIS provides a complete package of the prose specification and related files in a ZIP distribution file. You can download the ZIP file here:

http://docs.oasis-open.org/xacml/3.0/rbac/v1.0/cs02/xacml-3.0-rbac-v1.0-...

Members of the OASIS eXtensible Access Control Markup Language (XACML) TC [1] approved this specification by Special Majority Vote. The specification had been released for public review as required by the TC Process [2]. The vote to approve as a Committee Specification passed [3], and the document is now available online in the OASIS Library as referenced above.

Our congratulations to the TC on achieving this milestone and our thanks to the reviewers who provided feedback on the specification drafts to help improve the quality of the work.

========== Additional references:

[1] OASIS eXtensible Access Control Markup Language (XACML) TC
https://www.oasis-open.org/committees/xacml/

[2] Public reviews:

* 15-day public review:
https://lists.oasis-open.org/archives/members/201408/msg00012.html

* 15-day public review:
https://lists.oasis-open.org/archives/members/201110/msg00009.html

* 30-day public review:
https://lists.oasis-open.org/archives/tc-announce/201005/msg00003.html

* 60-day public review:
https://lists.oasis-open.org/archives/tc-announce/200905/msg00006.html

[3] Approval ballot:
https://www.oasis-open.org/committees/ballot.php?id=2686

Associated TC: 
eXtensible Access Control Markup Language (XACML)