Attempting to control, monitor and adapt application services over time by imposing general IT rules can only get you so far. As services proliferate, implementing policies that control service behavior at runtime is the only way to ensure consistent security, adherence to corporate business rules, and compliance with regulatory requirements. The SecureSpan XML Networking Gateway combines policy management with runtime policy enforcement, delivering an effective governance model for distributed SOAs. By implementing the Networking Gateway as a central Policy Enforcement Point (PEP) between service providers and consumers, organizations can control, monitor and adapt their SOA to enterprise needs, B2B requirements and public/private cloud deployments. - A Turnkey Governance Solution – Centrally enforce policies that ensure security, compliance, reliability, and quality of service for all application services no matter where they reside – in the enterprise or in the cloud.
- Extensible Policies – The SecureSpan Custom Assertion SDK allows Java programmers to create new policy assertions to address unique requirements.
 - Centralized SLA Enforcement – Throttling/rate limiting controls provide the ability to support service over-subscription with per-service throttling of excess messages
- Fine Grained Access Control – Featuring support for SAML authentication, authorization and attribute based policies, as well as XACML, organizations can leverage the XML Networking Gateway to enforce fine-grained entitlement decisions.
Features/Functionality
| SOA Policy Lifecycle Management | | WS-Policy-based graphical policy editor & composer | - Compose inheritable policy statements from 70+ pre-made policy assertions
- Branch policy execution based on logical conditions, message content, externally retrieved data or transaction specific environment variables
- Publish policies to popular registries for lifecycle management
- Service & operation level policies with inheritance for simplified administration
- Policy lifecycle and migration management across development, test, staging and production, as well as geographically distributed data centers
- API-level access to administration
- SDK-level policy creation for simplified policy customization
| | On-the-fly policy changes | - Polices can be updated live across clusters with no downtime required
| | Global policy migration | - Streamline policy migration across development, test, staging, and production environments, as well as mirror sites using the Enterprise Service Manager
| | Create custom policies | - Policy SDK allows for custom policy assertion creation using Java
| | API Management | API Publication
| - Secure, manage, monitor and control access to APIs exposed to third parties
- API usage can be throttled to ensure backend services are not overwhelmed; limited by user, time of day, location, etc; and quota managed (i.e., # of uses per user per day)
| | API Metrics and Reporting | - Configurable, out-of-the-box reports provide insight into API performance: measure throughput, routing failures, utilization and availability rates, etc
- Failed authentications and/or policy violations can be tracked to identify patterns and potential threats
| | API Security | - Support for all major WS* and WS-I security protocols
- Support for all major authentication and authorization standards, including SAML, Kerberos, digital signatures, X.509 certificates, LDAP, XACML, etc
| | Enterprise-scale Management | | Operations Console | - A single, real time view of all Gateways across the enterprise and cloud showing audits, events and key metrics
| | Policy Migration | - Centrally move policies between environments (development, testing, staging, production, etc), settings (enterprise, cloud, etc) or geographies, automatically resolving discrepancies such as SSG licenses, IP addresses, IT resources (i.e., LDAPs may be named differently), etc
| | Services Reporting | - Configurable, out-of-the-box reports provide insight into SSG operations, service-level performance, and service user experience
| | Remote Patching | - Selectively update any software installed on Gateways, including system files and operating system
| | Disaster Recovery | - Centrally back up SSG config files and policies from one or more Gateways/clusters, and remotely restore, enabling full disaster recovery
| | Management API | - Remote management APIs allow customers to hook their existing, third-party management tools into the SSG, simplifying asset management
| | XML Gateway Form Factors | | Hardware | - Active-active clusterable, dual power supply, mirrored hot-swappable drives, multi-core, 64-bit 1U server
| | Software | - Solaris 10 for x86 and Niagara, SUSE Linux, Red Hat Linux 4.0/5.0
| | Virtual Appliance | - VMware/ESX (VMware Ready certified)
- Cloud – Amazon EC2 AMI
| | Supported Standards | | XML 1.0, SOAP 1.2, REST, AJAX, XPath 1.0, XSLT 1.0, WSDL 1.1, XML Schema, LDAP 3.0, SAML 1.1/2.0, PKCS #10, X.509 v3 Certificates, FIPS 140-2, Kerberos, W3C XML Signature 1.0, W3C XML Encryption 1.0, SSL/TLS 3.0/1.1, SNMP, SMTP, POP3, IMAP4, HTTP/HTTPS, JMS 1.0, MQ Series, Tibco EMS, FTP, WS-Security 1.1, WS-Trust 1.0, WS-Federation, WS-Addressing, WSSecureConversation, WS-MetadataExchange, WS-Policy, WS-SecurityPolicy, WS-PolicyAttachment, WS-SecureExchange, WSIL, WS-I, WS-I BSP, UDDI 3.0, XACML 2.0, MTOM | Share: | More | | 
or
This e-mail address is being protected from spambots. You need JavaScript enabled to view it
ResourcesDatasheet:
XML Networking Gateway Download PDF | 196Kb Solution Brief:
SOA Policy Governance Download PDF | 208Kb White Paper:
The Role of XML Gateways in SOA Download PDF | 225 Kb White Paper:
Runtime SOA Governance Download PDF | 223 Kb Webinar:
A Practical Guide to Policy Authoring for SOA Governance Download PDF | View Webinar Podcast:
Managing and Enforcing SOA Security and Policies in Real-time Play Podcast Podcast:
Policy Driven SOA Play Podcast |
