XML VPN Client

Securely Bridge Cross-domain Communications

The Layer 7 XML VPN Client (XVC) is a client-side software solution that works in conjunction with the SecureSpan XML Firewall or XML Networking Gateway to effectively overcome the separation of authentication and authorization tasks across trust boundaries.

Matching the security details supplied in a Web service consumer’s request to the security requirements demanded by the Web service provider is a fine balancing act, requiring constant updating of both consumer and provider applications within an organization (in addition to regular out-of-band communications between organizations) as industry regulations and corporate requirements change.

The SecureSpan XML VPN Client (XVC) streamlines consumer and provider interactions by automatically negotiating the “handshake” between them, ensuring business continuity even in the face of changing requirements.

Extend Existing IDM Systems to SOA – quickly extend existing identity systems to encompass Web services and XML-based interactions, laying the foundation to bridge independent trust environments while preserving local authentication and authorization processes
Integrate with Service Providers More Cost-effectively – abstract out security and other infrastructure requirements, insulating client-side applications from policy changes and ensuring continuity of business
Onboard New Acquisitions Quicker – bridge multiple security domains, whether those domains be internal to the organization (for example, across the Chinese Wall separating retail banking from investment banking), separated globally (as between regional branch offices), or between head office and third-party service providers.

Features/Functionality

Trust and Identity Infrastructure
SAML Support	Interfaces with Security Token Service (STS) via WS-Trust or WS-Federation enabling federated identity deployments
Built-in Trust Store	Streamlines authentication by storing X.509 certificates issued by the SecureSpan XML Firewall or XML Networking Gateway onboard Certificate Authority
Credentialing	Supports client credentials from a broad range of identity sources including LDAP, Active Directory, and X.509 certificate-based Public Key Infrastructure (PKI)
SSO Extensibility	Leverages and extends most popular SSO/access management systems, including CA SiteMinder, IBM Tivoli Access Manager, Novell CentraSite, and Sun OpenSSO
Management and Administration
Automatic Policy Negotiation	Automatically coordinates policies with the SecureSpan XML Firewall or XML Networking Gateway
System-to-Sytem Interaction Support	No end-user runtime interaction is required. Optionally runs as a service in Microsoft Windows environments
Delegated Message Decoration	Allows the offloading of message signing, encryption, compression and security decoration from client applications speeding to time deployment by eliminating the need to re-code and re-test
XML VPN Form Factors
Standalone Executable	Supports Linux and Windows platforms
Hardware	Integrated inside a SecureSpan XML Firewall or XML Networking Gateway for “drop-in” Web services federation
Software	Software class library available for custom thick client development
Supported Standards
XML 1.0, SOAP 1.2, REST, AJAX, XPath 1.0, XSLT 1.0, WSDL 1.1, XML Schema, LDAP 3.0, SAML 1.1/2.0, PKCS #10, X.509 v3 Certificates, FIPS 140-2, Kerberos, W3C XML Signature 1.0, W3C XML Encryption 1.0, SSL/TLS 3.0/1.1, SNMP, SMTP, POP3, IMAP4, HTTP/HTTPS, JMS 1.0, MQ Series, Tibco EMS, FTP, WS-Security 1.1, WS-Trust 1.0, WS-Federation, WS-Addressing, WSSecureConversation, WS-MetadataExchange, WS-Policy, WS-SecurityPolicy, WS-PolicyAttachment, WS-SecureExchange, WSIL, WS-I, WS-I BSP, UDDI 3.0, XACML 2.0, MTOM
Share: \| More

or This e-mail address is being protected from spambots. You need JavaScript enabled to view it

Search, View and Navigation

XML VPN Client

Securely Bridge Cross-domain Communications

Features/Functionality

Resources