OpenPMF mainly focuses on application security policies for access control and auditing. This is called “authorization management”, and is a critical part of today’s application security strategy.