CA IAM r12 Helps Secure and Streamline Business Enablement of SOA and Web Services.Reduces Risk and Eases Regulatory Compliance with Intelligent Access Controls and Comprehensive Reporting ISLANDIA, N.Y. -- CA, Inc. (NYSE NYSE See: New York Stock Exchange : CA) today announced CA IAM IAM - Interactive Algebraic Manipulation. Interactive symbolic mathematics for PDP-10. ["IAM, A System for Interactive Algebraic Manipulation", C. Christensen et al, Proc Second Symp Symb Alg Manip, ACM Mar 1971]. r12, a major new version of its identity and access management solution that helps customers more securely and efficiently enable their businesses with service oriented architecture (SOA (1) (Start Of Authority) The first record in a DNS zone file. See DNS records. (2) (Service Oriented Architecture) The modularization of business functions for greater flexibility and reusability. ) and Web services (1) Loosely, any online service delivered over the Web. Such usage appears in articles from non-technical sources, but not in IT-oriented publications, because definition #2 below describes the correct use of the term. . CA IAM r12 provides the identity lifecycle management, access management, workflow automation See workflow. , delegated administration Delegated administration describes the decentralization of role-based-access-control systems. Many enterprises use a centralized model of access control. For large organizations, this model scales poorly and IT teams become burdened with menial role-change requests. , reporting, federation and other capabilities IT organizations require to efficiently and securely deliver critical business services and provide internal and external users with an enhanced customer experience -- regardless of platform. The new version: * Enhances security controls for emerging SOA architectures and other application architectures on both distributed and mainframe platforms. * Facilitates the extension of IAM capabilities to all business services across the enterprise to support policy-based security and governance. * Eases regulatory compliance and governance by automating IAM-related controls, providing security policy analysis and comprehensive reporting. * Increases inter-enterprise business enablement through enhanced identity federation. * Provides support for IPv6 and FIPS PUB FIPS PUB Federal Information Processing Standard Publication 140-2 for added security. "CA IAM is the cornerstone solution within CA's Security Management offerings and is an essential component of an integrated approach to IT management. As IT organizations are called upon to provide a wider range of services to more users and user communities -- and as IT security controls come under increased regulatory scrutiny -- the management of identities and access rights is becoming more challenging than ever," said Dave Hansen
CA is rolling out CA IAM r12 in phases. The first phase features CA SOA Security Service-oriented architecture (SOA) allows different ways to develop applications by combining services. The main premise of SOA is to erase application boundaries and technology differences. As applications are opened up, how we can combine these services securely becomes an issue. Manager, an innovative solution that provides comprehensive identity-based Web services security -- including authentication (1) Verifying the integrity of a transmitted message. See message integrity, e-mail authentication and MAC. (2) Verifying the identity of a user logging into a network. , authorization, auditing and protection against XML XML in full Extensible Markup Language. Markup language developed to be a simplified and more structural version of SGML. It incorporates features of HTML (e.g., hypertext linking), but is designed to overcome some of HTML's limitations. threats -- all in a single integrated solution. It also includes new versions of CA SiteMinder, CA Directory, and five CA solutions for z/OS (see http://ca.com/press/release.aspx?cid=158358). "At the same time as it accelerates business innovation and adaptability, SOA also presents serious new management, governance, and security challenges," said Robin Bloor, partner, Hurwitz & Associates. "To successfully meet these challenges -- and fully capitalize on Cap´i`tal`ize on` v. t. 1. To turn (an opportunity) to one's advantage; to take advantage of (a situation); to profit from; as, to capitalize on an opponent's mistakes s>. SOA's potential benefits -- IT organizations must adopt best practices and supporting technologies that ensure centralized, policy-based security management for an increasingly dynamic and modular set of IT services. With CA IAM r12, CA is addressing this key technology requirement of the emerging SOA market." CA SOA Security Manager r12 CA SOA Security Manager r12 enables IT organizations to centrally manage the security of their enterprise SOA/Web service deployments. By abstracting security from the Web services themselves, CA SOA Security Manager helps customers to significantly reduce the administrative burdens and other costs associated with providing security for SOA/Web services CA SOA Security Manager r12 inspects the security information contained in XML documents submitted by service consumers and uses this information to determine access. It provides enterprise-level functionality for SOA/Web services that are exposed internally and externally, keeping XML threats out while simultaneously controlling access for legitimate service consumers. It also: * Delivers expanded security management for Web services through the SOA Security Gateway, which provides a proxy-based security policy enforcement point (PEP), mitigation of XML malware threats, and automated routing and protocol translation. * Expands coverage of heterogeneous IT environments by adding an agent for J2EE Application A J2EE application or an enterprise application is any deployable unit of J2EE functionality. This can be a single J2EE module or a group of modules packaged into an EAR file along with a J2EE application deployment descriptor. Servers to its existing agents for Web servers. CA SiteMinder Web Access Manager r12 CA SiteMinder Web Access Manager r12 is an industry-leading centralized Web access management solution that provides user authentication See authentication. , single sign-on An identification system that lets users log into multiple Web sites on the Internet with one username and password. Single sign-on systems are also used within an enterprise, enabling users to access all authorized resources in the local network using the same username and password. , policy-based authorization, identity federation, and auditing of access to Web applications and portals. It features new application and policy lifecycle-management capabilities that, combined with its business-friendly definition of applications and data, speed the deployment of Web applications through controlled delegation of security administration. CA SiteMinder Web Access Manager r12 also includes: * Expanded support for federation to devices with non-traditional browsers, such as mobile phones. * New policy analysis and reporting that improves security control and eases regulatory compliance. * An extensible architecture that enables more rapid addition of new access management capabilities such as enhanced identity federation and Web services security management. "BT's implementation of the 21st Century Network (21CN) creates a new world of possibilities for BT to serve and empower our customers," said Robert Temple, Chief Security Architect, BT. "CA's IAM solution continues to play an important role in the evolution of the 21CN by enabling us to secure next-generation services in a streamlined and scalable way by further leveraging our successful implementation of CA SiteMinder Web Access Manager." CA Directory r12 CA Directory r12 takes full advantage of industry open standards Specifications for hardware and software that are developed by a standards organization or a consortium involved in supporting a standard. Available to the public for developing compliant products, open standards imply "open systems;" that an existing component in a system can be replaced -- enabling customers to accelerate time-to-market, reduce development and administration costs, and maintain maximum security. CA Directory r12 features 64-bit platform support for improved performance, Common Criteria (Common Criteria for Information Technology Security) An international standard process for defining security objectives and for evaluating compliance with those objectives. The Common Criteria have largely replaced the Trusted Computer Security Evaluation Criteria (TCSEC), the Canadian certification, more granular audit logging to ease regulatory compliance controls, and support for dynamic roles for greater administrative flexibility. Today's announcement follows the October 22 release of five CA solutions for IBM (International Business Machines Corporation, Armonk, NY, www.ibm.com) The world's largest computer company. IBM's product lines include the S/390 mainframes (zSeries), AS/400 midrange business systems (iSeries), RS/6000 workstations and servers (pSeries), Intel-based servers (xSeries) z/OS that strengthen and automate the protection of corporate IT resources, while helping to ensure legal and regulatory compliance. The integration of CA's mainframe and distributed security solutions enables administrators to administer identities, manage access and perform comprehensive auditing and reporting across their heterogeneous enterprise computing Refers to information technology in the larger company. See enterprise data and enterprise networking. environments. This unified approach to IT security mitigates risk while reducing technology ownership costs. To help customers rapidly deploy CA IAM R12 solutions and achieve tangible results, CA is also offering a full portfolio of assessment, implementation and education services that leverage best practices and methodologies based on successful IAM deployments around the world. CA IAM r12 is licensed based on the number of managed users and CPUs. Its components can be deployed modularly to address specific IAM challenges or used together to achieve more strategic IAM goals. More information is available at http://ca.com/iam. About CA CA (NYSE: CA), one of the world's largest information technology (IT) management software companies, unifies and simplifies the management of enterprise-wide IT. Founded in 1976, CA is headquartered in Islandia, N.Y., and serves customers in more than 140 countries. For more information, please visit http://ca.com. Copyright (c) 2007 CA. All Rights Reserved. One CA Plaza, Islandia, N.Y. 11749. All trademarks, trade names, service marks, and logos referenced herein belong to their respective companies. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion