• VMWare and ESX support facilitate deployment to both private & public clouds

• Configurable reports provide insight into cloud-based service performance health, and metrics (i.e., throughput, routing failures, utilization & availability)

• Manage access from cloud-based application services to enterprise-based assets with industry-leading access control, alarms/audits, & secure routing capabilities

• Measure and track cloud service provider performance to ensure they are meeting uptime and other contractual obligations

• Enforce policies around security, compliance, reliability, SLAs, quality of services, and others in order to control, monitor and manage application services

• Throttling/rate limiting controls provide the ability to support service over subscription with per-service throttling of excess messages
• Service availability features include support for strict failover between public and private cloud providers, round robin, best effort and latency-based routing

• Integration with leading identity, access, SSO and federation systems
• Onboard identity store for administering identities and staging new services

• Credential chaining, credential remapping and support for federated identity
• Integrated STS/SAML issuer supports SAML 1.1/2.0
• Integrated PKI CA for automated deployment and management of client-side certificates and RA ability for external CA’s including Verisign

• Configurable validation & filtering of HTTP headers, parameters and form data
• Detection of classified or “dirty” words or arbitrary signatures with subsequent scrubbing, rejection or redaction of messages
• Support for XML, SOAP, POX, AJAX, REST and other XML-based services

• Protect against XML parsing; XDoS and OS attacks; SQL and malicious scripting language injection attacks
• Protection against XML content tampering and viruses in SOAP attachments

• Secure, manage, monitor and control access to APIs exposed to third parties
• API usage can be throttled to ensure backend services are not overwhelmed; limited by user, time of day, location, etc; and quota managed (i.e., # of uses per user per day)

• Configurable, out-of-the-box reports provide insight into API performance: measure throughput, routing failures, utilization and availability rates, etc
• Failed authentications and/or policy violations can be tracked to identify patterns and potential threats

• Support for all major WS* and WS-I security protocols
• Support for all major authentication and authorization standards, including SAML, Kerberos, digital signatures, X.509 certificates, LDAP, XACML, etc 

• A single, real time view of all Gateways across the enterprise and cloud showing audits, events and key metrics

• Centrally move policies between environments (development, testing, staging, production, etc), settings (enterprise, cloud, etc) or geographies, automatically resolving discrepancies such as SSG licenses, IP addresses, IT resources (i.e., LDAPs may be named differently), etc

• Configurable, out-of-the-box reports provide insight into SSG operations, service-level performance, and service user experience

• Selectively update any software installed on Gateways, including system files and operating system

• Centrally back up SSG config files and policies from one or more Gateways/clusters, and remotely restore, enabling full disaster recovery

• Remote management APIs allow customers to hook their existing, third-party management tools into the SSG, simplifying asset management

Share: | More