SPML
From Wikipedia, the free encyclopedia
SPML (Service Provisioning Markup Language) is an XML-based framework, being developed by OASIS, for exchanging user, resource and service provisioning information between cooperating organizations.
Contents |
[edit] SPML Protocol
The Service Provisioning Markup language is the open standard protocol for the integration and interoperation of service provisioning requests. SPML is an OASIS standard. SPML version 1.0 has been approved in October 2003.SPML version 2.0 has been approved in April 2006.
[edit] What is Service Provisioning?
Service provisioning refers to the "preparation beforehand" of IT systems' materials or supplies required to carry out a specific activity. It goes beyond the initial "contingency" of providing resources, to encompass the entire lifecycle management of these resources. This includes the provisioning of digital services such as user accounts and access privileges on systems, networks and applications, as well as the provisioning of non-digital or "physical" resources such as cell phones and credit cards.
"Provisioning is the automation of all the steps required to manage (setup, amend and revoke) user or system access entitlements or data relative to electronically published services".
(this information was copied from http://www.openspml.org/spml_faq.html)
[edit] Goal of SPML
The goal of SPML is to allow organizations to securely and quickly set up user interfaces for Web services and applications, by letting enterprise platforms such as Web portals, application servers, and service centers generate provisioning requests within and across organizations. This can lead to automation of user or system access and entitlement rights to electronic services across diverse IT infrastructures, so that customers are not locked into proprietary solutions.
For example, a supply partner (Company A) goes to its partner's (Company B) supply chain portal and requests access to its inventory data, which is stored in a back-office system. In response, Company B initiates a request using SPML to communicate with SPML-enabled identity management software. After automatically acquiring the appropriate permissions, Company B grants the appropriate access levels to Company A to gain access to the data it needs.
This process takes place without the need for the portal environment to have an intimate understanding of the back-office environment. In other words, it's all automatic. The prototype encompasses all of the provisions of the proposed SPML standard while also leveraging the benefits of the Security Assertion Markup Language (SAML).
(this info copied from http://www.nwfusion.com/details/5623.html)
