1. Home
2. Virtual Academy
3. XACML and the Externalization of Authorization: How to do it Right

XACML and the Externalization of Authorization: How to do it Right

XACML (eXtensible Access Control Markup Language) is the de-facto standard for externalizing authorization from existing applications. It is a key standard for today’s Dynamic Authorization Management systems. XACML provides simple concepts for defining policies and describes the different elements required within a Dynamic Authorization Management infrastructure.

This training will give an overview about XACML and the concepts behind, from the way policies are expressed to the different components like PEPs, PDPs, or PAPs. It also will look at the shortcomings XACML currently has and how to best deal with them. It will look at different approaches in which XACML currently is used, showing the breadth and potential limitations of XACML. And it will discuss where to better not use XACML itself but to “translate” things.

Speakers

Martin Kuppinger

Principal Analyst
KuppingerCole

Martin Kuppinger is Founder and Principal Analyst at KuppingerCole, a leading analyst company for identity focused information security, both in classical and in cloud environments. Prior to KuppingerCole, Martin wrote more than 50 IT-related books and is known  as a widely-read columnist...

Continuing Education Credits

After attending this webinar you will be able to:

• Understand the policy structure defined in XACML.
• Understand the role of the various components used in XACML.
• Understand the strengths, shortcomings, risks, and opportunities of using XACML.
• Understand how XACML currently is used in different types of implementations.

This event qualifies for 1 Group Internet Based CPE

Prerequisites: None
Advance Preparation: None
Learning Level: Intermediate
Field: Computer Science

Who should attend: CIOs, CISOs, IT Managers, and the project managers and IT professionals with 3 or more years’ experience.

KuppingerCole is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing education on the National Registry of CPE Sponsors. State Boards of accountancy have final authority on the acceptance of individual courses for CPE credits. Complaints regarding registered sponsors may be submitted to the National Registry through its website: www.learningmarket.org For more information regarding administrative policies such as complaint and refund, please contact Mr. Levent Kara at our office's telephone +49 211 23707710, email: lk@kuppingercole.com

Downloads