Microsoft is forwarding the notion of a language for security policy. Blair Dillaway of Microsoft Research, described the Security Policy Assertion Language at a recent Grid computing conference.
Speaking at GridWorld in Washington, D.C. earlier this month, Blair Dillaway described SecPal as a declarative, logic-based security language that supports distributed policy authoring and composition. It is said to be an XML dialect that works as a means for handling access control requirements, trust, authorization, and delegation policies.
Presentation on SecPal - ggf.org [PPT]