Header Image

XML VPN Client

Securely Bridge Cross-domain Communications

Simplify B2B & Portal Web Service Deployments with the Layer 7 XML VPN Client

The Layer 7 XML VPN Client (XVC) simplifies identity and Web service integration in SOA across the Internet. Deployable as client-side software, class libraries or a client-side gateway, the Layer 7 XML VPN manages identity federation, policy coordination and integration challenges when connecting SOA services and applications spanning identity and security domains. The XML VPN is an optional add on to the SecureSpan XML Firewall and SOA Gateway to help organizations safely extend their SOA across internal departments, agencies and branch offices by automating token management and security on the remote side, including the configuration of WS* style security preferences.


XML VPN Client - Layer 7 Technologies


Extend Existing IDM Systems to SOA – quickly extend existing identity systems to encompass Web services and XML-based interactions, laying the foundation to bridge independent trust environments while preserving local authentication and authorization processes

Integrate with Service Providers More Cost-effectively – abstract out security and other infrastructure requirements, insulating client-side applications from policy changes and ensuring continuity of business

Onboard New Acquisitions Quicker – bridge multiple security domains, whether those domains be internal to the organization (for example, across the Chinese Wall separating retail banking from investment banking), separated globally (as between regional branch offices), or between head office and third-party service providers

  • Standalone Executable supports Linux and Windows platforms
  • Client-side Gateway
  • Software class library for custom client development
  • XML
  • SOAP
  • AJAX
  • XPath
  • XSLT
  • WSDL
  • XML Schema
  • LDAP
  • SAML
  • PKCS
  • X.509 Certificates
  • FIPS 140
  • Kerberos
  • W3C XML Signature
  • W3C XML Encryption
  • SNMP
  • SMTP
  • POP3
  • IMAP4
  • IPv6
  • WCF
  • JMS
  • MQ Series
  • REST
  • Tibco EMS
  • FTP
  • WS-Security
  • WS-Trust
  • WS-Federation
  • WS-Addressing
  • WSSecureConversation
  • WS-MetadataExchange
  • WS-Policy
  • WS-SecurityPolicy
  • WS-PolicyAttachment
  • WS-SecureExchange
  • WSIL
  • WS-I
  • WS-I BSP
  • UDDI
  • WSRR
  • MTOM
Trust and Identity Infrastructure
SAML Support
  • Interfaces with Security Token Service (STS) via WS-Trust or WS-Federation enabling federated identity deployments
Built-in Trust Store
  • Streamlines authentication by storing X.509 certificates issued by the SecureSpan XML Firewall, SOA Gateway or CloudSpan onboard Certificate Authority
  • Supports client credentials from a broad range of identity sources including LDAP, Active Directory, and X.509 certificate-based Public Key Infrastructure (PKI)
SSO Extensibility
  • Leverages and extends most popular SSO/access management systems, including CA SiteMinder, IBM Tivoli Access Manager, Novell CentraSite, and Sun OpenSSO
Management and Administration
Automatic Policy Negotiation
  • Automatically coordinates policies with the SecureSpan XML Firewall, SOA Gateway and CloudSpan products
System-to-Sytem Interaction Support
  • No end-user runtime interaction is required. Optionally runs as a service in Microsoft Windows environments
Delegated Message Decoration
  • Allows the offloading of message signing, encryption, compression and security decoration from client applications speeding to time deployment by eliminating the need to re-code and re-test
XML VPN Form Factors
Standalone Executable
  • Supports Linux and Windows platforms
  • Integrated within the SecureSpan XML Firewall, SOA Gateway and CloudSpan products for “drop-in” Web services federation
  • Software class library available for custom thick client development