Evidian SOA Access Manager

Evidian SOA Access Manager is an authentication and authorization service that is based on the open standards available for securing web services and Java applications. It provides:

Login Modules for the standard JAAS ( Java Authentication and Authorization Service) interface, running in the Java environment
An authentication server that performs user authentication and provides SAML (Secure Assertion Markup Language) assertions
A Public Key Infrastructure that allows applications to sign and verify the SAML assertions
A user-friendly administration console used to manage the global configuration, define the assertion contents, and manage all the necessary, associated PKIs

Benefits of this approach include:

Simple, rapid implementation
Secure interoperability between multiple tiers and domains
User-friendly central administration
Flexible deployment
Scalability and availability

Simple, rapid implementation

JAAS is a API that provides flexible and scalable mechanisms for securing client and server Java applications, essentially an abstraction layer between applications and the authentication and authorization mechanisms. As such, it enables application developers to use any security mechanisms.

In this way, the SOA Access Manager JAAS login module enables Java and J2EE applications to be secured quickly and easily with authentication and authorization mechanisms. The solution is compliant with any Java application using the JAAS interface with an integration effort that is not extensive.

Secure interoperability between multiple tiers and domains

The Evidian SOA Access Manager authentication server delivers SAML assertions following a successful authentication. (SAML provides an interoperable security mechanism for passing credentials and other related information between applications that have their own authentication and authorization system.) In this way, a transaction initiated at one site can be completed at a different site, through the sharing of the security information required to complete the transaction.

As a result, enables businesses applications to interoperate more easily and more securely with other entities, such as business partners and customers. The end-user’s SAML token can be presented to trusted business partners affiliated in a single sign-on relationship.

User-friendly centralized administration

Although the Evidian SOA Access Manager platform itself covers some security aspects, it needs an external framework to integrate all the enterprise SSO requirements, and make it possible to deploy a centralized security policy with consistent authorization services.

Evidian SOA Access Manager not only provides this external framework in one package but also allows global administration of all the component security features through a single console interface:

Multiple Public Key Infrastructures
Assertion contents.
Access control rules
Global configuration rules

Flexible deployment

One of the key advantages of multi-tier and multi-domain environments is their ability to federate heterogeneous individually optimized services. Evidian SOA Access Manager accommodates the resulting diversity and the rapid expansion that it often brings.

The Evidian SOA Access Manager JAAS login module is compatible with multiple J2EE platforms, including BEA WebLogic Server™ and JBoss.

Scalability and availability

Evidian SOA Access Manager incorporates Evidian's patented SafeKit technology allowing the use of multiple authentication servers. This makes it easy to expand capacity as new services are added, and also maintains the high level of availability that is so critical for applications on which your daily business depends:

Load balancing ensures good and predictable performance across the entire multi-tier, mulit-domain environment
The built-in failover maintains continued service organization-wide even during planned maintenance and hardware or software failures

Want to know more?

Detailed features and supported platforms >>





Evidian SOA Access Manager Overview Benefits Features White papers	... > IAM Suite > Access Management > SOA Access Manager > Benefits Evidian SOA Access Manager Evidian SOA Access Manager is an authentication and authorization service that is based on the open standards available for securing web services and Java applications. It provides: Login Modules for the standard JAAS ( Java Authentication and Authorization Service) interface, running in the Java environment An authentication server that performs user authentication and provides SAML (Secure Assertion Markup Language) assertions A Public Key Infrastructure that allows applications to sign and verify the SAML assertions A user-friendly administration console used to manage the global configuration, define the assertion contents, and manage all the necessary, associated PKIs Benefits of this approach include: Simple, rapid implementation Secure interoperability between multiple tiers and domains User-friendly central administration Flexible deployment Scalability and availability Simple, rapid implementation JAAS is a API that provides flexible and scalable mechanisms for securing client and server Java applications, essentially an abstraction layer between applications and the authentication and authorization mechanisms. As such, it enables application developers to use any security mechanisms. In this way, the SOA Access Manager JAAS login module enables Java and J2EE applications to be secured quickly and easily with authentication and authorization mechanisms. The solution is compliant with any Java application using the JAAS interface with an integration effort that is not extensive. Secure interoperability between multiple tiers and domains The Evidian SOA Access Manager authentication server delivers SAML assertions following a successful authentication. (SAML provides an interoperable security mechanism for passing credentials and other related information between applications that have their own authentication and authorization system.) In this way, a transaction initiated at one site can be completed at a different site, through the sharing of the security information required to complete the transaction. As a result, enables businesses applications to interoperate more easily and more securely with other entities, such as business partners and customers. The end-user’s SAML token can be presented to trusted business partners affiliated in a single sign-on relationship. User-friendly centralized administration Although the Evidian SOA Access Manager platform itself covers some security aspects, it needs an external framework to integrate all the enterprise SSO requirements, and make it possible to deploy a centralized security policy with consistent authorization services. Evidian SOA Access Manager not only provides this external framework in one package but also allows global administration of all the component security features through a single console interface: Multiple Public Key Infrastructures Assertion contents. Access control rules Global configuration rules Flexible deployment One of the key advantages of multi-tier and multi-domain environments is their ability to federate heterogeneous individually optimized services. Evidian SOA Access Manager accommodates the resulting diversity and the rapid expansion that it often brings. The Evidian SOA Access Manager JAAS login module is compatible with multiple J2EE platforms, including BEA WebLogic Server™ and JBoss. Scalability and availability Evidian SOA Access Manager incorporates Evidian's patented SafeKit technology allowing the use of multiple authentication servers. This makes it easy to expand capacity as new services are added, and also maintains the high level of availability that is so critical for applications on which your daily business depends: Load balancing ensures good and predictable performance across the entire multi-tier, mulit-domain environment The built-in failover maintains continued service organization-wide even during planned maintenance and hardware or software failures Want to know more? Detailed features and supported platforms >>	Benefts for your business Cross-domain security By making it easier to share security definition information across multiple application domains, Evidian SOA Access Manager faciltates an efficient, productive working relationship with partners, suppliers and customers. Reactivity By consolidating the administration of all the security features of a multi-domain environment, Evidian SOA Access Manager allows you to integrate new services rapidly and maintain all definitions up to date. Ease of expansion Highly scalable, Evidian SOA Access Manager can expand capacity to accommodate an increasing workload. Standards-based and compatible with industry-leading application server software, it simplifies the integration of new intenal or external services.