Project news

XACML REST Profile v1.1 and JSON Profile of XACML 3.0 v1.1 from XACML TC approved as Committee Specifications

OASIS is pleased to announce that “XACML REST Profile Version 1.1” and “JSON Profile of XACML 3.0 Version 1.1” from the OASIS eXtensible Access Control Markup Language (XACML) TC have been approved as OASIS Committee Specifications.

XACML is an OASIS Standard which describes both a policy language and an access control decision request/response language (both defined in XML). The policy language is used to describe general access control requirements, and has standard extension points for defining new functions, data types, combining logic, etc. The request/response language lets you form a query to ask whether or not a given action should be allowed, and interpret the result. XACML v3.0 is an international standard (ITU-T X.1144), approved by the International Telecommunications Union – Telecommunication Standardization Sector (ITU-T).

The REST Profile specification defines a profile for the use of XACML in a RESTful architecture.

The JSON profile proposes a standardized interface between a policy enforcement point and a policy decision point using JSON, leveraging the decision request and response structure specified in the core XACML standard.

These Committee Specifications are OASIS deliverables, completed and approved by the TC and fully ready for testing and implementation.
The prose specifications and related files are available here:

XACML REST Profile Version 1.1
Committee Specification 01
05 December 2018

Editable source: (Authoritative)
https://docs.oasis-open.org/xacml/xacml-rest/v1.1/cs01/xacml-rest-v1.1-cs01.doc
HTML:
https://docs.oasis-open.org/xacml/xacml-rest/v1.1/cs01/xacml-rest-v1.1-cs01.html
PDF:
https://docs.oasis-open.org/xacml/xacml-rest/v1.1/cs01/xacml-rest-v1.1-cs01.pdf
ZIP: (complete package of the specification documents and any related files)
https://docs.oasis-open.org/xacml/xacml-rest/v1.1/cs01/xacml-rest-v1.1-cs01.zip

JSON Profile of XACML 3.0 Version 1.1
Committee Specification 01
05 December 2018

Editable source: (Authoritative)
https://docs.oasis-open.org/xacml/xacml-json-http/v1.1/cs01/xacml-json-http-v1.1-cs01.doc
HTML:
https://docs.oasis-open.org/xacml/xacml-json-http/v1.1/cs01/xacml-json-http-v1.1-cs01.html
PDF:
https://docs.oasis-open.org/xacml/xacml-json-http/v1.1/cs01/xacml-json-http-v1.1-cs01.pdf
ZIP: (complete package of the specification documents and any related files)
https://docs.oasis-open.org/xacml/xacml-json-http/v1.1/cs01/xacml-json-http-v1.1-cs01.zip

Members of the XACML TC [1] approved these specifications by Special Majority Votes. The specifications had been released for public review as required by the TC Process [2]. The vote to approve as Committee Specifications passed [3], and the documents are now available online in the OASIS Library as referenced above.

Our congratulations to the TC on achieving this milestone and our thanks to the reviewers who provided feedback on the specification drafts to help improve the quality of the work.

========== Additional references:

[1] OASIS eXtensible Access Control Markup Language (XACML) TC
https://www.oasis-open.org/committees/xacml/

[2] Public reviews:

* 30-day public reviews, 20 September 2018:
https://lists.oasis-open.org/archives/xacml/201809/msg00013.html
– Comment resolution logs:
http://docs.oasis-open.org/xacml/xacml-rest/v1.1/csprd01/xacml-rest-v1.1-csprd01-comment-resolution-log.txt
http://docs.oasis-open.org/xacml/xacml-json-http/v1.1/csprd01/xacml-json-http-v1.1-csprd01-comment-resolution-log.txt

[3] Approval ballots:
https://www.oasis-open.org/committees/ballot.php?id=3277
https://www.oasis-open.org/committees/ballot.php?id=3278