XACML Data Loss Prevention / Network Access Control (DLP/NAC) Profile Version 1.0

Approved: 16 Feb 2015

Defines a profile for the use of XACML in expressing policies for data loss prevention and network access control tools and technologies. It defines standard attribute identifiers useful in such policies, and recommends attribute value ranges for certain attributes. It also defines several new functions for comparing IP addresses and DNS names, not provided in the XACML 3.0 core specification.

Security

Produced by:

OASIS eXtensible Access Control Markup Language (XACML) TC

Voting history:

February 2015

OASIS Standard:

Committee Specification 01

Distribution ZIP file

Cite as:

Cite as:
[xacml-dlp-nac-v1.0]
XACML Data Loss Prevention / Network Access Control (DLP/NAC) Profile Version 1.0. Edited by John Tolbert, Richard Hill, Crystal Hayes, David Brossard, Hal Lockhart, and Steven Legg. 16 February 2015. OASIS Committee Specification 01. http://docs.oasis-open.org/xacml/xacml-3.0-dlp-nac/v1.0/cs01/xacml-3.0-dlp-nac-v1.0-cs01.html. Latest version: http://docs.oasis-open.org/xacml/xacml-3.0-dlp-nac/v1.0/xacml-3.0-dlp-nac-v1.0.html.

The work of OASIS is supported by organizations from around the world. Members include:

View all our members