contents

software
 
Forum Systems Unveils Industry-First STS Network Appliance

Forum has announced the release of Forum Sentry Security Token Service. Forum Sentry STS is an enterprise-grade OASIS WS-Trust security token server that is deployed to extend existing identity management systems within a federated Service Oriented Architecture. As organizations look to connect user-centric activity with Web Services, there is critical need to manage distributed identities and correlate security information.

Using WS-Trust, the Forum Sentry STS automates the validation of security tokens and enables identities to be exchanged for both browser-based and machine-to-machine applications. WS-Trust is the standard mechanism by which clients delegate the processing of security tokens that are embedded within Web Service messages.

As enterprises connect, automate and orchestrate business processes, they also need to integrate application security. A user that relies on a Web portal as their workspace may, for example, be provided links to access their online bank account, Salesforce.com calendar or Oracle Inventory Management.

The user may be asked to submit a username and password to log in to the portal interface. However, other services may require the user to re-authenticate using another credential type such as Kerberos or SAML token. Intermediary applications may also exist that require specific security information to fulfill requests. A federated security and identity strategy would let the user sign-on with a single authentication method. Security content, such as privileges and personally identifiable information, would be seamlessly propagated to each application.

Forum Sentry STS enables enterprises to take full advantage of the benefits of a SOA by integrating disparate security mechanisms as well as offering the policy management needed to establish and maintain the trust relationships for loosely coupled Web Services.

Forum Sentry STS is deployed by enterprises as a trusted third-party to users, Web Service clients and Web Service providers. Forum Sentry STS features include federated security management, interoperable security tokens and identity-governed policy enforcement. A Web Service client can ask to be authenticated and authorized for specific requests, exchange security tokens or translate associated claims to an understandable syntax. Forum Sentry STS allows enterprises to manage security token processing functions using a brokered trust model, which avoids the need for many-to-many trust relationships between Web Service consumers and producers.

Forum Sentry STS supports a wide variety of security token formats including SAML, X.509, Username, Kerberos as well as custom token formats defined by Identity and Access Management systems. An easy to use Web-based administration console is designed for policy-driven configuration in support of any number of federated security use cases.

Forum Sentry STS ships as a network appliance to reduce software configuration costs and support real-time, high-performance transactions. It supports the OASIS WS-Trust specification for issuing, renewing, canceling, and validating security tokens. The appliance is available immediately from Forum Systems and its worldwide resellers.



write your comments about the article :: © 2007 Networking News :: home page