extensible access control markup language (XACML)

Extensible Access Control Markup Language (XACML) is a markup language for web services and access controls.

XACML is closely related to the Security Assertion Markup Language( SAML) and is an extension of this language. XACML is used for exchanging security policies and specifies how policy information for access control looks like and is transmitted. Policy developers can use it to define what web services can do with which access privileges for which documents. This common policy language can be used to manage access policy compliance across the enterprise. XACML is used in attribute-basedaccess control( ABAC).