Oasis (Organisation for the Advancement of Structured Information Standards) has announced ratification of Service Provisioning Markup Language (SPML) 1.0, which provides an XML-based framework for allocating system resources within and between organisations.
The ratification paves the way for SPML to reduce the cost and complexity of provisioning Web services, according to Computer Associates International (CAI), which participated in development of the standard and is incorporating it into the company's eTrust Identity and Access Management Suite.
SPML, Oasis said, defines provisioning of digital services such as user accounts and access privileges on systems, networks, and applications. It also provides this function for non-digital or physical resources such as cell phones and credit cards.
"The SPML is an XML definition that provides a common definition of the interface for making provisioning requests," said Darran Rolls, chairman of the Oasis provisioning services technical committee, which was responsible for SPML. He also is director of technology at identity management software provider Waveset Technologies, which is set to be acquired by Sun Microsystems.
Through SPML, a portal application developer, for example, could communicate with any provisioning service that supports the standard, Rolls said.
SPML is related to another Oasis standard, the Security Assertion Markup Language (SAML), in that together they provide a standard way to create user accounts and validate users as part of an identity management infrastructure, Oasis said. The two provide a basis for integrating single sign-on and provisioning software for Web services.
Members of the Oasis provisioning services technical committee include Abridean, BEA Systems, BMC Software, Business Layers, CAI, Entrust, Netegrity, OpenNetwork Technologies and Waveset Technologies.
Paul Krill writes for IDG News Service