ZXID
   HOME

TheInfoList



Click Here for Items Related To - ZXID
OR:
ZXID on:   [Wikipedia]   [Google]   [Amazon]

ZXID.org
Identity Management Identity and access management (IAM or IdAM) or Identity management (IdM), is a framework of policies and technologies to ensure that the right users (that are part of the ecosystem connected to or within an enterprise) have the appropriate acce ...
toolkit implements standalone
SAML 2.0 Security Assertion Markup Language (SAML) 2.0 is a version of the Security Assertion Markup Language, SAML standard for exchanging authentication and authorization identities between security domains. SAML 2.0 is an XML-based communications ...
, Liberty ID-WSF 2.0, and
XACML __NOTOC__ The eXtensible Access Control Markup Language (XACML) is an XML-based standard markup language for specifying access control policies. The standard, published by OASIS (organization), OASIS, defines a declarative fine-grained, attribute ...
2.0 stacks and aims at implementing all popular federation, SSO, and ID Web Services protocols. It is a C implementation with minimal external dependencies -
OpenSSL OpenSSL is a software library for applications that provide secure communications over computer networks against eavesdropping, and identify the party at the other end. It is widely used by Internet servers, including the majority of HTTPS web ...
, CURL, and
zlib zlib ( or "zeta-lib", ) is a software library used for data compression as well as a data format. zlib was written by Jean-loup Gailly and Mark Adler and is an abstraction of the DEFLATE compression algorithm used in their gzip file compre ...
– ensuring easy deployment (no DLL hell). Due to its small footprint and efficient and accurate schema driven implementation, it is suitable for embedded and high volume applications. Language bindings to all popular highlevel languages such as
PHP PHP is a general-purpose scripting language geared towards web development. It was originally created by Danish-Canadian programmer Rasmus Lerdorf in 1993 and released in 1995. The PHP reference implementation is now produced by the PHP Group. ...
,
Perl Perl is a high-level, general-purpose, interpreted, dynamic programming language. Though Perl is not officially an acronym, there are various backronyms in use, including "Practical Extraction and Reporting Language". Perl was developed ...
, and
Java Java is one of the Greater Sunda Islands in Indonesia. It is bordered by the Indian Ocean to the south and the Java Sea (a part of Pacific Ocean) to the north. With a population of 156.9 million people (including Madura) in mid 2024, proje ...
, are provided via SWIG. ZXID implements, as of Nov 2011, SP, IdP, WSC, WSP, Discovery, PEP, and PDP roles. ZXID is the reference implementation of the core security architecture of the TAS3.eu project.


Research and projects

TAS3 architecture, and ZXID as a reference implementation, has been used by various research efforts. ZXID.org has been deployed commercially by various enterprise customers in US (e.g. Symlabs Inc., LightSquared, etc.), Europe (Synergetics NV, Levelview Lda, zxidp.org, etc.), and Asia (e.g. Sri Lanka Hotels & Resorts).


IPR status

Apache2 Open Source License. All dependency libraries (OpenSSL, libcurl, zlib) are under similarly liberal open source license. The underlying standards are all Royalty Free as specified in Liberty Alliance and OASIS IPR policies. The TAS3 architecture, of which ZXID is the reference implementation, is covered by TAS3 Consortium "Royalty free to implement and use" pledge at www.tas3.eu section "Install and configure" :: In TAS3 General Assembly of 2010-09-13, following declaration was made: ::: "TAS3 architecture and specifications, as described in public deliverables D2.1, D2.4, and D7.1, are licensed free for implementation and use by anyone. Up to June 2010, TAS3 consortium partners do not hold patents nor will exercise patents that cover implementation and use of the TAS3 architecture and specifications of those deliverables. This license is only granted for the specific purpose of correct implementations of TAS3 specifications."TAS3 Consortium General Assembly minutes from 2010-09-13, as excerpted on tas3.eu section "Install and Configure" (new ref, worked on 20120416)
/ref>


History

ZXID was started in 2005 by Sampo Kellomäki while still working with Symlabs. In 2006 Sampo obtained a commitment from Symlabs to release the code under the Apache2 license, which effectively made ZXID an open source project. In 2009 the TAS3 project adopted ZXID as the reference implementation of TAS3 core security technologies. The 1.0 release and end of initial development phase happened in May 2011. ZXID is considered to be stable with respect to SAML2, ID-WSF2, and XACML2 features. ZXID continues to be an active open source project (as of October 2014) and new features, some of which may not be stable, continue to be added.


References

{{reflist Free software projects