Axiomatics Blog : Question of the Week

How Can I Use Time in a XACML Policy?

What is the main difference between XACML 3.0 and XACML 2.0?

How can commercial off-the-shelf (COTS) applications be supported with XACML?

How Can I Use Policy References in ALFA?

How Can I Return the Reason for a Denial in a XACML Response?

Should I Define the Authorization Logic in the Policy or an External Datasource?

How Can I Use Date in a XACML Policy?

Using the Date Datatype in XACML: We have written in the past about using time in XACML policies. This can be useful when wanting to control access outside office hours for instance. Sometimes, we also want to use dates to achieve similar and complementary use cases.

How Can I Comment My Policies?

Breaking the Glass – Using XACML to Implement HIPAA Regulations

When and How Can I Express Negative Logic in XACML?

What is an XACML Policy Reference?

In XACML what is the StringOneAndOnly function?

What Does NotApplicable Mean?

Do Attribute Data Types Matter?

How Does a Policy Decision Point Load a New Policy?

Is It a Good Practice to Use SQL Views for Policy Information Points?

Should the Policy Enforcement Point Send All Attributes Needed to Evaluate a Request?

How Do I Check for the Presence of an Attribute?

What are the Possible XACML REST PDP Response Codes?

When Should I Use an XACML Condition?

When Should I Use a XACML Condition? There are a few use cases when conditions are important. The Relationship: The main driver for using conditions is the ability to implement relationships. Relationships are in fact one of the main drivers for XACML and ABAC.

How Can I Use Booleans in a XACML Target?

Does the JSON profile for XACML support MDP