Articles

Export Controls are laws and regulations that govern the transfer or disclosure of goods, technology, software, services, and funds originating in one country to persons or entities based or having citizenship in another country, even if the regulated items are not crossing an international border.

Zero Trust and Data Centric security can be complementary approaches to security. Zero Trust can help to limit access to sensitive data, while Data Centric security can help to protect the data itself. By combining the two approaches, organizations can create a comprehensive security strategy that provides both network-level and data-level protection, helping to improve their overall security posture.

XACML stands for “eXtensible Access Control Markup Language”. It is an XML-based markup language designed specifically for Attribute-Based Access Control (ABAC). The standard defines a declarative fine-grained, attribute-based access control policy language, an architecture, and a processing model describing how to evaluate access requests according to the rules defined in policies.

A policy engine is an essential component of Zero-Trust Architecture (ZTA), which has gained popularity in recent years as a security model that trusts no user or device by default. With the proliferation of data breaches and cyber attacks, organizations are seeking to adopt a Zero-Trust approach to secure their sensitive data and critical assets.

CMMC is a formal document proving a company’s compliance with NIST SP 800-171. The purpose of CMMC is to verify that the information systems used by DOD contractors to process, transmit or store sensitive data meet a list of mandatory information security requirements.

NextLabs’ Active Control Policy Language (ACPL) is a fourth-generation policy language (4GL) based on the XACML standard for access control. It’s the underlying language of NextLabs Control Center, the platform that allows users to express and manage information control policies.

Dynamic authorization is the core technology behind the NextLabs platform, in which authorization and access rights to an organization’s network, applications, data, and other sensitive assets are granted dynamically in real-time via attribute-based access control (ABAC) policies. A dynamic authorization system with ABAC significantly streamlines the management process, removing the need to individually administer hundreds of thousands of access-control lists and role assignments on a daily basis.