Short Items of Interest on Security
Added to Sun’s Identity Management Portfolio
Sun announced the availability of a new, fine-grained entitlement enforcement engine as part of OpenSSO Express 9, and a next-generation directory proxy server as part of Sun OpenDS Standard Edition 2.2. The entitlement enforcement engine supports enterprise deployments and provides mass-scale extranet deployments with a complete off-the-shelf, standards-based solution that can externalize authorization for more than 100 million users. The new directory proxy server proactively maintains up-time as activity increases with a “global index” to help easily distribute and balance loads - based on factors such as any identity attribute or based on a traffic distribution algorithms.
New Summary Briefs Highlight Available Integration Solutions
According to Daniel P. Raskin in Sun Identity Marketing Division, the company works hard on ensuring its Sun Identity Management solutions can be integrated with all kinds of popular third party solutions. Recently, Sun published five new solutions briefs on this type of integration. These PDFs provide information on Sun Identity Management Suite partner integrations with Sun ISV partners ARCOT, BrinQa, Cyber-Ark, Intellitactics and Passlogix.
Learn How to Define Customized Polices and Improve User Experience
Learn how to configure the OpenSSO server and its Policy Agents to use IP/Resource/Environment-based authentication for a flexible mechanism that can define customized policies and improve user experience for access control. The three-part article series hosted on the Sun Developer Network comes from the minds of Qingwen Cheng, Mrudul Uchil and Rick Palkovic. The series explain the resource authentication architecture and information flow of OpenSSO components, and presents five use cases for enterprise/corporate SSO and federated SSO deployments.
Five-part Article Series
This five-part series by Mrudul Uchil, Kamna Jain and Rick Palkovic considers the virtue of using a standardized interface language in enterprise architecture in order to liberate the application that publishes a service from having to know anything at all about the calling application. The result of this practice makes service-oriented architecture (SOA) especially useful for both enterprise and inter-enterprise architectures, the authors contend in their introduction to the series.
Employs Native OpenSSO Integration Agent at Runtime
In their Sun Developer Network paper on “Delegating XML Gateway Runtime Authorization to OpenSSO” Francois Lascelles and Rick Palkovic describe how access control rules defined in OpenSSO can be enforced at runtime by SecureSpan XML Gateway through its native OpenSSO integration agent. XML Gateways, they explain, are dedicated applications that enable a centralized approach to security and identity enforcement.
Newly Integrated IT Architecture Gives Provider the Agility Needed to Handle Claim Load 
The Canadian health insurer Mediavie Blue Cross solved the problem it was experiencing with disparate legacy architecture by implementing a service-oriented architecture (SOA) comprising several Sun solutions. A first step in the migration involved deploying an enterprise-service bus (ESB) that integrates legacy applications to manage claims processing. In restructuring the company’s enterprise architecture, Mediavie IT personnel relied on Sun product managers, the open-source community, and Sun Educational Services for advice and training.
Scalability and Reliability Lead French Radio Broadcaster to Sun Technologies 
Needing to completely rebuild its Windows-based Web portal and ASP.NET-based applications to support a larger audience with new services, radio broadcaster RTL France began shopping around for a cost-effective, energy-efficient, and easy to manage IT environment that would be reliable and scalable. Open source solutions were its preference. RTL France decided to build a new portal infrastructure using Sun CoolThreads and x64 servers, running Solaris 10. For its applications, Sun GlassFish Enterprise Server proved fast and scalable.
Presentation by Daniel Raskin, Sun’s Chief Identity Strategist 
Sun is hosting a free webinar on OpenSSO Express. Set for Wednesday, August 19th at 10:00 am PST / 1:00 pm EST / 19.00 CET, the 40-minute presentation to be given by Daniel Raskin, Sun’s chief identity strategist, will focus on the latest version of OpenSSO and how it can help secure a data center’s core resources regardless of whether they are internal, external or in the cloud. The presentation will be followed by a question and answer session so that specific listeners’ questions can be addressed.
Short Items of Interest on Sun Security
