Secure Web Services ...

Background


In an end-to-end Identity Management framework, there needs to be a secure method for validating and exchanging digital identities between browser-based and browser-less applications and the Web services to which they connect. NetworkingPS supplies this secure connection through its partnership with Ping Identity Inc.

 

 

 

 

 



PingTrust 2™

PingTrust is a Security Token Server that extends Identity Management Systems to Web services. With PingTrust, digital identities are associated with Web service requests to provide enhanced services while simultaneously ensuring appropriate information access and regulatory accountability. PingTrust manages validation and exchange of digital identities between browser-based and browser-less applications and the Web services to which they connect.

 

Advanced Features

  • Token Generation: SAML 1.1, SAML 2.0, Custom Tokens via SDK

  • Token Validation: SAML 1.1, SAML 2.0, Kerberos v5, X.509 Username Tokens, SSO Tokens, Custom Tokens via SDK

  • Flexible Deployment Options: Web Service Clients, Web Service Providers, Web Clients , .NET Clients, IWA Environments, Internal and Cross-Organization, Gateway Independent

  • WS Security Interceptors: PingTrust includes interceptors that handle WS Security processing for Java-based Web Service Clients and Web Service Providers. Interceptors simplify configuration and deployment by effectively eliminating the need for customers to develop their own WS Security processing code.

  • Java and .NET Integration Libraries: SDKs enable easy integration of PingTrust functionality into both Java and .NET applications (even integrating .NET clients with Java services).

  • User Attribute Sharing: Attribute Retrieval, Subject, role & attribute mapping

  • High Performance and Availability: Multiple clustered servers managed by a single console enable high availability and near-linear scalability.

  • Authentication/Identification: Requestors authenticate to PingTrust with a Username token (with password) in a WSS header or IWA via Kerberos. Requestors can be identified (without being authenticated) with a User ID token (without password) in a WSS header, and PingTrust enforces the policy.

  • Intuitive Administration: A Web-based configuration console provides requestor management, credential generation and management, X.509 Certificate management and a policy-based metaphor to configure large numbers of requestors.

 


For More Information

 

To download information about this and other NetworkingPS Security Management Solutions, please click here.