concept

XACML

XACML (eXtensible Access Control Markup Language) is an OASIS standard XML-based language for expressing and enforcing access control policies in distributed systems. It provides a fine-grained, attribute-based access control (ABAC) model that allows organizations to define who can do what, when, and under what conditions. XACML is commonly used in enterprise environments, cloud services, and web applications to manage authorization decisions centrally.

Also known as: eXtensible Access Control Markup Language, XACML 3.0, XACML 2.0, Attribute-Based Access Control, ABAC
🧊Why learn XACML?

Developers should learn XACML when building systems that require complex, dynamic access control policies, such as in healthcare, finance, or government applications where compliance and security are critical. It is particularly useful for scenarios involving multi-tenancy, role-based access with contextual rules, or when integrating authorization across diverse services and platforms. Using XACML helps standardize policy management, reduce security vulnerabilities, and ensure consistent enforcement across an organization's IT infrastructure.

Compare XACML

XACML vs RbacXACML vs Oauth ScopesXACML vs Jwt Claims

Learning Resources

📄
OASIS XACML 3.0 Standard
docs
📝
XACML Tutorial by Axiomatics
tutorial
🎬
Introduction to XACML on YouTube
video
📚
XACML in Practice: A Developer's Guide
book

Related Tools

Access ControlAuthorizationSecurity PoliciesXmlOauth

Alternatives to XACML

RbacOauth ScopesJwt Claims