(
Security
Assertion
Markup
Language) An XML-based format from OASIS for exchanging security information for single sign-on. The "assertions" are statements from a SAML authority that authenticate a user, confirm some attribute about the individual and grant or deny authorization. SAML provides only the message format and must be used with protocols that perform the authentication service. See
XACML and
single sign-on.