Anne Anderson is currently working on security, privacy, and identity problems in virtual environments, as well as continuing work on policy languages. She was one of the primary developers of the OASIS eXtensible Acess Control Markup Language (XACML), and of it profiles for the Security Assertion Markup Language (SAML) and for role based access control (RBAC). She is developing a profile of XACML for web services for use in conveying authorization and privacy policies. Her background includes extensive Internet security work, as well as development and research work in operating systems, compilers, and databases.
