White Paper: Key Decision Points for Using Open Source Software in Access Control Solutions


This white paper discusses the use of open source software within access control solutions and presents key decision points to be considered for risk management when adopting open source products within enterprise-level access control.

This discussion relates to the following issues:

  • Supply Chain Risk Management (SCRM)
  • Information Assurance (IA) Products
  • Software Development Lifecycle Management (SDLC)
  • Component Lifecycle Management (CLM)
  • Software Security Development Lifecycle (SDL)
  • Attribute-Based Access Control (ABAC)
  • Open protocols, including Security Assertion Markup Language (SAML) and eXtensible Access Control Markup Language (XACML)