DataPower XS40 Hardware Validated for Federated Identity and XML Web Services Security at SAML Interoperability Lab at RSA 2005.CAMBRIDGE, Mass. -- Proven SAML (Security Assertion Markup Language) An XML-based format from OASIS for exchanging security information for single sign-on. The "assertions" are statements from a SAML authority that authenticate a user, confirm some attribute about the individual and grant or 2.0 Interoperability with 12 Other Vendors Showcases DataPower's High-End Features, Deep Integration & Standards Commitment Required for Global 1000 Deployments DataPower(R), the leading provider of network hardware for securing XML XML in full Extensible Markup Language. Markup language developed to be a simplified and more structural version of SGML. It incorporates features of HTML (e.g., hypertext linking), but is designed to overcome some of HTML's limitations. Web services (1) Loosely, any online service delivered over the Web. Such usage appears in articles from non-technical sources, but not in IT-oriented publications, because definition #2 below describes the correct use of the term. , announced that its XS40 XML security gateway has successfully demonstrated SAML 2.0 interoperability at last week's 14th annual RSA conference The RSA Conference is a Cryptography-related conference held annually in the San Francisco Bay Area. The RSA Conference started in 1991 as a forum for cryptographers to gather and share the latest knowledge and advancements in the area of Internet security. in San Francisco San Francisco (săn frănsĭs`kō), city (1990 pop. 723,959), coextensive with San Francisco co., W Calif., on the tip of a peninsula between the Pacific Ocean and San Francisco Bay, which are connected by the strait known as the Golden . As the only Web services security vendor selected to participate for two years running, DataPower both contributed its experience with actual Web services deployments that have already processed billions of dollars in SAML-secured business transactions, and showed a high-performance hardware SAML implementation. With its XS40 XML security gateway, DataPower is the leading provider of high-security federated identity policy enforcement points. The XS40, the most widely deployed solution of its kind, enables enterprises to securely federate fed·er·ate v. fed·er·at·ed, fed·er·at·ing, fed·er·ates v.tr. To cause to join into a league, federal union, or similar association. v.intr. To become united into a federal union. access control across domains, be they internal departments or external customers and partners. The DataPower XS40 XML Security Gateway was the first Web services security solution or XML firewall to fully support SAML and federated identity (See: DataPower First to Demonstrate Real-World Deployments of Hardware-Based Federated Identity Management Enforcement Point Using WS-Security and SAML (http://www.datapower.com/newsroom/pr_100504_saml.html)), along with other key security standards including WS-Security, SSL (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data. , XML-Encryption, XML-DSIG, RADIUS, LDAP (Lightweight Directory Access Protocol) A protocol used to access a directory listing. LDAP support is implemented in Web browsers and e-mail programs, which can query an LDAP-compliant directory. , and XKMS XKMS XML Key Management Specification (W3C) . OASIS member DataPower, along with associate members Computer Associates, Entrust, Hewlett-Packard, Oracle, RSA Security, Sun Microsystems and others teamed with the U.S. General Service Administration E-Gov E-Authentication Initiative to demonstrate interoperability of the Security Assertion Markup Language (SAML) 2.0 specification, an OASIS standard for the exchange of authentication, attribute and authorization information. "Interoperability is a key issue for federated identity standards organizations, vendors, and enterprises," said senior analyst Gerry Gebel of Burton Group. "SAML 2.0 is a significant convergence point for federation, but also poses interoperability and deployment challenges that must be addressed by commercial product providers." Today's news further showcases DataPower's high-end security functionality (See: DataPower Brings Maturity to WS Security for the Global 1000 with 3.1 Release (http://www.datapower.com/newsroom/pr_012405_xs3dot1.html)), its unmatched list of third-party certifications (See: Department of Defense Certifies DataPower XS40 XML Security Gateway (http://www.datapower.com/newsroom/pr_020705_jitc.html)), and its deep integration across the broadest portfolio of existing enterprise application and security infrastructure. The OASIS SAML 2.0 Interoperability Lab On February 16, 2005 at the RSA Conference in San Francisco, CA, thirteen vendors from around the world teamed with the U.S. General Service Administration (GSA (1) (Global mobile Suppliers Association, Sawbridgeworth, U.K., www.gsacom.com) A membership organization of suppliers of GSM products and services. Its goal is to promote GSM as the worldwide mobile communications standard. See GSM Association and GSM. ) E-Gov E-Authentication Initiative to successfully demonstrate interoperability of the SAML 2.0, a security specification developed by the OASIS standards consortium. SAML enables secure exchange of authentication, attribute, and authorization information between disparate security domains, making secure Internet e-business transactions possible. The OASIS Federated Identity InterOp Lab, co-sponsored by GSA E-Authentication Initiative, Enspier, and RSA Security, demonstrated a combination of web single sign-on, and single logout Signing out and exiting from a network server, Web server or other computer system. The process (the noun) is a "logout" or "logoff," while the act of doing it (the verb) is to "log out" or to "log off." See login. scenarios. About DataPower DataPower provides enterprises with intelligent XML-Aware network infrastructure to ensure unparalleled performance, security and manageability of next-generation applications and XML Web Services. DataPower's patented XML Generation Three (XG3(TM)) technology powers the industry's first wire-speed XML-aware networking devices that provide immediate return on technology investments while streamlining application deployments. Founded in 1999, DataPower is privately held and based in Cambridge, MA. For more information about DataPower, please contact 617-864-0455 or visit www.DataPower.com. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion