System News for Sun Users - The Blog

Added to Sun’s Identity Management Portfolio

Sun announced the availability of a new, fine-grained entitlement enforcement engine as part of OpenSSO Express 9, and a next-generation directory proxy server as part of Sun OpenDS Standard Edition 2.2. The entitlement enforcement engine supports enterprise deployments and provides mass-scale extranet deployments with a complete off-the-shelf, standards-based solution that can externalize authorization for more than 100 million users. The new directory proxy server proactively maintains up-time as activity increases with a “global index” to help easily distribute and balance loads - based on factors such as any identity attribute or based on a traffic distribution algorithms.

(Get More Information . .)

New Summary Briefs Highlight Available Integration Solutions

According to Daniel P. Raskin in Sun Identity Marketing Division, the company works hard on ensuring its Sun Identity Management solutions can be integrated with all kinds of popular third party solutions. Recently, Sun published five new solutions briefs on this type of integration. These PDFs provide information on Sun Identity Management Suite partner integrations with Sun ISV partners ARCOT, BrinQa, Cyber-Ark, Intellitactics and Passlogix.

(Get More Information . .)

Learn How to Define Customized Polices and Improve User Experience

Learn how to configure the OpenSSO server and its Policy Agents to use IP/Resource/Environment-based authentication for a flexible mechanism that can define customized policies and improve user experience for access control. The three-part article series hosted on the Sun Developer Network comes from the minds of Qingwen Cheng, Mrudul Uchil and Rick Palkovic. The series explain the resource authentication architecture and information flow of OpenSSO components, and presents five use cases for enterprise/corporate SSO and federated SSO deployments.

(Get More Information . .)

Five-part Article Series

This five-part series by Mrudul Uchil, Kamna Jain and Rick Palkovic considers the virtue of using a standardized interface language in enterprise architecture in order to liberate the application that publishes a service from having to know anything at all about the calling application. The result of this practice makes service-oriented architecture (SOA) especially useful for both enterprise and inter-enterprise architectures, the authors contend in their introduction to the series.

(Get More Information . .)

Employs Native OpenSSO Integration Agent at Runtime

In their Sun Developer Network paper on “Delegating XML Gateway Runtime Authorization to OpenSSO” Francois Lascelles and Rick Palkovic describe how access control rules defined in OpenSSO can be enforced at runtime by SecureSpan XML Gateway through its native OpenSSO integration agent. XML Gateways, they explain, are dedicated applications that enable a centralized approach to security and identity enforcement.

(Get More Information . .)

Newly Integrated IT Architecture Gives Provider the Agility Needed to Handle Claim Load

The Canadian health insurer Mediavie Blue Cross solved the problem it was experiencing with disparate legacy architecture by implementing a service-oriented architecture (SOA) comprising several Sun solutions. A first step in the migration involved deploying an enterprise-service bus (ESB) that integrates legacy applications to manage claims processing. In restructuring the company’s enterprise architecture, Mediavie IT personnel relied on Sun product managers, the open-source community, and Sun Educational Services for advice and training.

(Get More Information . .)

Scalability and Reliability Lead French Radio Broadcaster to Sun Technologies

Needing to completely rebuild its Windows-based Web portal and ASP.NET-based applications to support a larger audience with new services, radio broadcaster RTL France began shopping around for a cost-effective, energy-efficient, and easy to manage IT environment that would be reliable and scalable. Open source solutions were its preference. RTL France decided to build a new portal infrastructure using Sun CoolThreads and x64 servers, running Solaris 10. For its applications, Sun GlassFish Enterprise Server proved fast and scalable.

(Get More Information . .)

Presentation by Daniel Raskin, Sun’s Chief Identity Strategist

Sun is hosting a free webinar on OpenSSO Express. Set for Wednesday, August 19th at 10:00 am PST / 1:00 pm EST / 19.00 CET, the 40-minute presentation to be given by Daniel Raskin, Sun’s chief identity strategist, will focus on the latest version of OpenSSO and how it can help secure a data center’s core resources regardless of whether they are internal, external or in the cloud. The presentation will be followed by a question and answer session so that specific listeners’ questions can be addressed.

(Get More Information . .)

Short Items of Interest on Sun Security

• Using One Instance of OpenSSO to Secure Web Services
• New and Updated OpenSSO Extensions
• Scripts for Encrypted File System / Scratch Space
• Wanted: Solaris Security Aficionados to Update Solaris 10 Benchmark
• Kernel SSL Proxy (KSSL) Project
• Solaris Security Demonstrations on RBAC, Cryptographic Framework, Process Rights Management

(Get More Information . .)

Managing Access to In-house and SaaS Applications

This article, “Federating to Google Apps with OpenSSO,” explains how to simultaneously control access to in-house applications and those hosted by the Software as a Service (SaaS) provider Google by using OpenSSO. SaaS applications are also sometimes referred to as on-demand software, web-based software, or hosted software. In a SaaS based delivery model, a commercial vendor develops the software, hosts its operations, provides Internet-based access, and supports applications for its end users and customers.

(Get More Information . .)