 |
Forum Sentry™ Specifications |
 |
|
| SECURE WEB SERVICES COMMUNICATIONS |
 |
Web Services Mediation and Virtualization
|
|
Segregated traffic management for raw XML and SOAP messages
|
|
Multiple communication modes: Network Service, Proxy & In-line
|
|
HTTP(S) 1.0/1.1
|
|
Active/Passive FTP
|
|
Tibco Rendezvous, IBM Websphere MQ, JMS
|
|
Request and Response processing
|
|
| WEB SERVICES AUTHORIZATION |
|
HTTP(S) Basic Authentication
|
|
Security Assertion Markup Language (SAML)
|
|
XML Digital Signatures
|
|
WS-Security (User Name Token, X.509 Certificates and SAML)
|
|
SSL Client/Server X.509 Certificate Authentication
|
|
WSDL message-level access control
|
|
Dynamic LDAP Directory integration (e.g. SunOne, RSA Keon, MS Active Directory, Oracle Directory)
|
|
Policy-based Access Control Lists
|
|
| DATA-LEVEL SECURITY POLICIES |
|
WSDL masking and URI filtering
|
|
XML Digital Signatures for data integrity
|
|
Content filtering using XPath, Schema editing and regular expressions
|
|
SOAP with Attachments security processing
|
|
Composite schema validation, SOAP1.1/1.2 and WSDL 1.1/1.2 filtering
|
|
Granular Element-Level Security
|
|
WS-Encryption
|
|
| PROACTIVE OPERATIONS MANAGEMENT |
|
SNMP v3 w/ Forum MIB & Syslog monitoring
|
|
Exportable policy configuration with Global Device Management
|
|
GUI Workbench and browser administration
|
|
Dedicated 10/100 Ethernet management interface; dual Gigabit Ethernet data interfaces
|
|
Integrated Active/Passive Failover
|
|
Data-Level evidence repository with external archiving to: MYSQL, IBM UDB, Oracle
|
|
Web Service Traffic Monitoring, Statistics and Reporting
|
|
Secure WSDL document aggregation and publishing
|
|
| GLOBAL DEVICE MANAGEMENT |
|
Synchronize policies across multiple devices and server instances
|
|
Distribute and manage policies at a granular level
|
|
Segregated administrative access control
|
|
| SIMPLIFIED KEY MAINTENANCE |
|
Import, generation and management of X.509 and PKCS key formats
|
|
PKCS #1, PKCS #7, PKCS #8, PKCS #10, PKCS #11, PKCS #12
|
|
X.509 Certificates and CSRfs
|
|
512, 1024, 2048, 4096 key bit sizes
|
|
RSA, DSA, Triple-DES
|
|
OCSP and Certificate revocation lists via LDAP
|
|
Certificate Fetching via LDAP
|
|
Certificate chain validation for XML Security and SSL
|
|
FIPS 140-2 Level III Hardware Security Module
|
|
| XML WEB SERVICES SPECIFICATIONS |
|
SOAP 1.1/1.2, XML 1.0, XSLT 1.0, Schema 1.0, DTD, XPath 1.0/2.0, UDDI 2.x+
|
|
XML Digital Signature, XML Encryption, WS-Encryption, WS-Digital Signatures
|
|
WSDL 1.1/1.2
|
|
WS-Security, SAML, XKMS
|
|
WS-I Basic Profile
|
|
|
|
|
Press Releases
