XACML 2.0 refers to the 2.0 specification of the eXtensible Access Control Markup Language (XACML), ratified by the OASIS standards group in February 2005.
XACML 2.0 is the second version of the eXtensible Access Control Markup Language (XACML). As of April 2014, XACML has 3 versions: XACML 1.0, XACML 2.0, and XACML 3.0. The latest version is XACML 3.0.
Overall XACML 2.0 and XACML 3.0 achieve the same functionality which is to define fine-grained, attribute-based access control policies. Please refer to the XACML tag wiki for additional details.
XACML 2.0 defines a fixed number of attribute categories whereas XACML 3.0 lets users define custom attribute categories although, usually, the same categories are eventually used in XACML 2.0 and XACML 3.0.
XACML 2.0 provides support for static obligations. XACML 3.0 provides support for dynamic obligations and advice.
XACML 2.0 is defined in 2 schema files: one for the policy language and one for the request. XACML 3.0 is defined in a single schema file.
Both XACML 2.0 and XACML 3.0 use the same conceptual architecture.
Other versions of XACML include:
- XACML 1.0
- XACML 1.1
- XACML 2.0
- XACML 3.0
XACML 1.0, 1.1, and 2.0 are extremely similar. XACML 3.0 brings new differences which make the standard more generic.
