Axiomatics Policy Auditor

The Axiomatics Policy Auditor (APA) simplifies the analysis and validation process of XACML policies. It is designed for use by managers, controllers and auditors, and features a user-friendly web-based graphical interface with minimal use of technical jargon.

Users analyze policies and their effects by writing and submitting a wide range of queries to the Policy Auditor. The type of queries currently supported by the APA include, among others:

Who can access a specific resource?
Under what conditions can the user access the resource?
What information can they access?
Under what conditions can the information be accessed by a specific user?
What can a specific user do to a certain resource?

apa web

Among other things users can query whether suppliers can read inventory data in the organization's portal.

The APA process

1) User writes question to analyze an XACML policy, in the APS policy store (PRP).
2) Once the user submits the query, the APA screens through the selected XACML policies in the policy store and makes use of any necessary additional information to analyze the query.
3) The query result is shown in the APA in the form of XACML attributes that users can easily interpret.

Benefits of Axiomatics Policy Auditor

Ensure compliance with regulatory mandates
Assist auditors in understanding high-level consequences of policies
Increase confidence in policy controls and accountability

Features of Axiomatics Policy Auditor

Supports XACML
Full integration with Axiomatics Policy Server
Web-based application with user-friendly interface
Compatibility with most browsers
Iterative analysis
Ability to save and store queries for future uses

To learn more about this product, download the APA Data Sheet from the Resources section.

Approach
- - Future-proof access control
    Extensible authorization
    Beyond roles and RBAC
    Risk intelligence
    Fine granular policy enforcement
    Enabling information sharing
  - Business values
    Governance
    Compliance
    Risk management integration
    Cost savings
    New opportunities
Technology
- - Products and Services
    Axiomatics products - overview
    Axiomatics Policy Server
    APS Developer Edition
    Axiomatics Policy Auditor
    Axiomatics Reverse Query
    CA SiteMinder Extension
  - Components
    Policy Administration Points
    Axiomatics Language for Authorization (ALFA)
    Policy Enforcement Points
    Policy Information Points
    Policy Decision Points
  - Foundations
    100% XACML
    Attribute Based Access Control
    Externalized authorization
    Fine-grained authorization
  - Resources
    White papers
    Data Sheets
    Case studies
    Product sheets
    Videos
    XACML for developers
    XACML for Windows Server 2012
Solutions
- - Industries
    Financial industries
    Health care
    Insurance
    Manufacturing
    Public sector
    OEM / Solution providers
  - Objectives
    Privacy protection
    Fraud prevention
    Information sharing
    Cloud scenarios
    SOA security
About
- - Company
    About Axiomatics
    Management
    Board
    Contacts
    Careers
  - Customers and Partners
    Customers
    Partners
    System integrators
    Technology partners
  - News and Events
    News
    Events
    Newsletters

Search

Policy Information Points
Axiomatics Policy Information Point (PIP) connectors are used to connect to attribute stores.

Policy Administration Points
The APS Policy Administration Point (PAP) is the most advanced XACML policy authoring and debugging tool available on the market.

XACML advanced training
Description of the Axiomatics Policy Server, the world's leading XACML implementation.

Externalized authorization
Externalizing authorization from applications reduces development costs while enabling risk intelligent authorization.

Policy Enforcement Points
Axiomatics offers XACML Policy Enforcement Points (PEP) for a broad variety of environments.

Analysis and further reading

To get more in-depth information on fine-grained, context aware access control, visit our resource centre. Once you have registered and logged on you can access all our whitepapers.

Become a registered user

Contact Axiomatics

Would you like to learn more about Axiomatics solutions? Would you like to see a demo? Do you want to speak to an Axiomatics representative about your authorization requirements?

Contact Axiomatics