HOME

TheInfoList



Click Here for Items Related To - ZXID
OR:
ZXID on:   [Wikipedia]   [Google]   [Amazon]

ZXID.org Identity Management toolkit implements standalone
SAML 2.0 Security Assertion Markup Language 2.0 (SAML 2.0) is a version of the SAML standard for exchanging authentication and authorization identities between security domains. SAML 2.0 is an XML-based protocol that uses security tokens conta ...
, Liberty ID-WSF 2.0, and
XACML XACML stands for "eXtensible Access Control Markup Language". The standard defines a declarative fine-grained, attribute-based access control policy language, an architecture, and a processing model describing how to evaluate access requests a ...
2.0 stacks and aims at implementing all popular federation, SSO, and ID Web Services protocols. It is a C implementation with minimal external dependencies -
OpenSSL OpenSSL is a software library for applications that provide secure communications over computer networks against eavesdropping or need to identify the party at the other end. It is widely used by Internet servers, including the majority of HTT ...
, CURL, and
zlib zlib ( or "zeta-lib", ) is a software library used for data compression. zlib was written by Jean-loup Gailly and Mark Adler and is an abstraction of the DEFLATE compression algorithm used in their gzip file compression program. zlib is also ...
– ensuring easy deployment (no
DLL hell In computing, DLL Hell is a term for the complications that arise when one works with dynamic-link libraries (DLLs) used with Microsoft Windows operating systems, particularly legacy 16-bit editions, which all run in a single memory space. DLL Hel ...
). Due to its small footprint and efficient and accurate schema driven implementation, it is suitable for embedded and high volume applications. Language bindings to all popular highlevel languages such as
PHP PHP is a general-purpose scripting language geared toward web development. It was originally created by Danish-Canadian programmer Rasmus Lerdorf in 1993 and released in 1995. The PHP reference implementation is now produced by The PHP Group. ...
,
Perl Perl is a family of two high-level, general-purpose, interpreted, dynamic programming languages. "Perl" refers to Perl 5, but from 2000 to 2019 it also referred to its redesigned "sister language", Perl 6, before the latter's name was offici ...
, and
Java Java (; id, Jawa, ; jv, ꦗꦮ; su, ) is one of the Greater Sunda Islands in Indonesia. It is bordered by the Indian Ocean to the south and the Java Sea to the north. With a population of 151.6 million people, Java is the world's List ...
, are provided via SWIG. ZXID implements, as of Nov 2011, SP, IdP, WSC, WSP, Discovery, PEP, and PDP roles. ZXID is the reference implementation of the core security architecture of the TAS3.eu project.


Research and projects

TAS3 architecture, and ZXID as a reference implementation, has been used by various research efforts. ZXID.org has been deployed commercially by various enterprise customers in US (e.g. Symlabs Inc., LightSquared, etc.), Europe (Synergetics NV, Levelview Lda, zxidp.org, etc.), and Asia (e.g. Sri Lanka Hotels & Resorts).


IPR status

Apache2 Open Source License. All dependency libraries (OpenSSL, libcurl, zlib) are under similarly liberal open source license. The underlying standards are all
Royalty Free Royalty-free (RF) material subject to copyright or other intellectual property rights may be used without the need to pay royalties or license fees for each use, per each copy or volume sold or some time period of use or sales. Computer standards ...
as specified in Liberty Alliance and OASIS IPR policies. The TAS3 architecture, of which ZXID is the reference implementation, is covered by TAS3 Consortium "Royalty free to implement and use" pledge at www.tas3.eu section "Install and configure" (http://vds1628.sivit.org/tas3/?page_id=150#section3) :: In TAS3 General Assembly of 2010-09-13, following declaration was made: ::: "TAS3 architecture and specifications, as described in public deliverables D2.1, D2.4, and D7.1, are licensed free for implementation and use by anyone. Up to June 2010, TAS3 consortium partners do not hold patents nor will exercise patents that cover implementation and use of the TAS3 architecture and specifications of those deliverables. This license is only granted for the specific purpose of correct implementations of TAS3 specifications."TAS3 Consortium General Assembly minutes from 2010-09-13, as excerpted on tas3.eu section "Install and Configure" (new ref, worked on 20120416)
/ref>


History

ZXID was started in 2005 by Sampo Kellomäki while still working with Symlabs. In 2006 Sampo obtained a commitment from Symlabs to release the code under the Apache2 license, which effectively made ZXID an open source project. In 2009 the TAS3 project adopted ZXID as the reference implementation of TAS3 core security technologies. The 1.0 release and end of initial development phase happened in May 2011. ZXID is considered to be stable with respect to SAML2, ID-WSF2, and XACML2 features. ZXID continues to be an active open source project (as of October 2014) and new features, some of which may not be stable, continue to be added.


References

{{reflist Free software projects