HERAS-AF Logo Holistic Enterprise-Ready Application Security Architecture Framework
Jan 22, 2010

Release of new HERAS-AF XACML Core 1.0.0-M1

HERASAF released the first milestone of the HERASAF XACML Core component version 1.0.0-M1.

This is a new / improved implementation of the XACML Evaluation Engine.

The target of the new implementation is a much easier usage and less configuration overhead.

We changed the architecture (based on the feedback from our users) to have a much better modularization and extensability by having clear, component oriented, stable interfaces.

We also improved diagnostics with increased logging capabilities and better exception handling.

We reduced the footprint of our implementation by reducing dependencies and we removed Springframework completly from the new HERASAF XACML Core. So that the XACML Evaluation Engine can be used completely standalone.

Existing users don't need to worry. We will still support older versions. But we advice to try the newest release - it's worth it.
Category: XACML Core
Posted by: Florian Huonder

HERASAF XACML Core 1.0.0-M1 is the first released component that is built upon the new HERAS-AF architecture.

The HERASAF XACML Core is the heart in our new architecture. It is a standalone usable XACML 2.0 Evaluation Engine.
The new architecture of HERASAF XACML is designed with focus on better usability, less configuration, modularization and extensability.

Starting with the release 1.0.0-M1 of HERASAF XACML Core our users can get a fully compliant XACML 2.0 Implementation with features like:

  • All XACML 2.0 MUST-features and types

    • Policy / Context types

    • Rule and Policy Combining algorithms

    • All functions except xpath functions

    • All data types except xpath-expression

    • Attribute designators (no attribute selector)

    • Handling of Missing Attributes

  • Handling of Obligations

  • Fully compliant evaluation

  • Marshallers (JAXB) to marshal or unmarshal requests, responses and policies

  • A factory that enables the easy creation of a PDP without any knowledge of internal structure nor is any Spring needed

  • Detailed Logging with MDC (Mapped-Diagnostic-Context)

  • Standalone usable with a single JAR file.

Within two lines of code you can setup your XACML 2.0 Policy Decision Point:

SimplePDPFactory.useDefaultInitializers();
PDP simplePDP = SimplePDPFactory.getSimplePDP();

Read the Getting Started Guide for a fast introduction.

Have fun with the new HERASAF.