Access management is part of identity management and comprises all measures for secure access to web applications, including authentication, authorization, universal password (SSO), identity federation and auditing
. The access solutions are essentially determined by the security protocols used, such as IPsec, the company-specific network configurations as well as by Virtual Private Networks
(VPN) and the existing authentication techniques.All solution approaches should be open with regard to the authentication procedures, they should have open interfaces
, such as theLightweight Directory Access Protocol (LDAP) or Open Database Connectivity (ODBC), and they should be able to be integrated into existing infrastructures
. Access management is essentially dominated by proprietary solutions, as there are still no binding standards. For example, the Security Assertion Markup Language (SAML) and the Extensible Access Control Markup Language (XACML) are being established for porting policies. In addition, the Simple Object Access Protocol (SOAP) and the Extensible Markup Language (XML) are used.