Benefits
..........................................................................................................................................................................

ITAC WS-Guardian® is a powerful solution that promotes a fast, organized, secure and sustainable growth of your SOA infrastructure and enables both highly flexible customization and enforcement of security policies as well as an integrated SOA life-cycle management without constant recoding to application components.

Gain competitive advantages in your business by significantly reducing the time required to deploy new SOA services without any concern on security matter, with a product with features like:



Web services securing through security policies application.

Attack prevention to services exposed by the organization.

Centralized management of security policies for web services.


Security policies application on services without coupling with their implementation technology.

Guaranteed confidentiality, integrity and non-repudiation of services.

Run-time governance for web services life-cycle.

Reduced workload in the governance process.

Centralized management of services.

Automatic documentation.

Third party solutions integration.

Maintainability and organized growth of SOA architectures.

Architecture's security becomes a decision of the security area, rather than a problem in the IT area.


..........................................................................................................................................................................


Web services securing through security policies application

ITAC WS-Guardian® safeguards the information exchanged through Web services under the criteria of trust and privacy, so that by publishing a service through the ITAC WS-Guardian® platform , it minimizes the risk of unauthorized personnel access, which compromises exposed data; this leads to theft, proliferation and alteration of the published information.

Access and security policies implemented in ITAC WS-Guardian® are adequate security controls to ensure higher data privacy, avoiding the real loss of information by the organization providing the service and increasing the confidence perceived by users.

Likewise, the quick and simple customizable security policies of ITAC WS-Guardian® applied in a granular way preventing the indiscriminate use of information by unauthorized users and keeps an optimal level of information confidentiality since the authorized users access only to available information according to the assigned profile.

ITAC WS-Guardian® has specific restriction policies for confidentiality, integrity and non repudiation of services using encryption, authentication, digital signatures and flow control requests via IP restrictions, content, and HTTP headers, which protect traffic requests. It also enables conditional policies composed from existing policies.

There are entry policies, which are those that filter or process the messages information when they pass through the platform; and exit policies, which are those that are used to process the messages that the platform sends to the recipients (whether they are customers of the service, or the protected service itself).
 

Back to menu

..........................................................................................................................................................................
 

Attack prevention to services exposed by the organization

The management platform, enabled for service management, policies configuration and monitoring of ITAC WS-Guardian® enables a simple and flexible configuration for secure access to services through a variety of security granular filters to protect the traffic requests as well as a variety of specific filters for message encryption, data integrity through digital signature and flow control of requests per IP address restrictions and schedules.


ITAC WS-Guardian® is the unique solution available on the market that allows the application of composed conditional filters based on the content of the SOAP message with the advantage of applying bi-directional security rules.
 

Back to menu


..........................................................................................................................................................................


Centralized management of security policies for web services

The management platform, enabled for service management, policies configuration and monitoring of ITAC WS-Guardian® enables a simple and flexible configuration for secure access to services through a variety of security granular filters to protect the traffic requests as well as a variety of specific filters for message encryption, data integrity through digital signature and flow control of requests per IP address restrictions and schedules.

ITAC WS-Guardian® is the unique solution available on the market that allows the application of composed conditional filters based on the content of the SOAP message with the advantage of applying bi-directional security rules
 

Back to menu


..........................................................................................................................................................................


Security policies application on services without coupling with their implementation technology

Web services are a piece of software using a set of protocols and standards, used to exchange data between applications that can be developed in different programming languages and executed on any platform, in this case a SOA platform. Inmany cases these development technologies are not compatible, but ITAC WS-Guardian® is a security and governance platform that safeguards those services regardless of the technology in which they are developed.

 

Back to menu


..........................................................................................................................................................................


Guaranteed confidentiality, integrity and non-repudiation of services

The combination of security policies and procedures of ITAC WS-Guardian® ensures the security and integrity of the implementation of transactions or traffic requests on SOA, based on the different criteria that defines a secure transaction such as:

 

 

 


Authentication

 


Authorization

 


Confidentiality

 

 


Ensuring the identity of the transactor by confirming the transaction's authenticity, verifying that the sender of the message is really an authorized user through the use of various techniques, including those contained in the WS Basic Security Profile.

 


The definition of policies, controls carefully the access to the services platform in a customized way for each user, where the latter can access and make use of the services that explicitly were granted to him.

 


Keeping the manipulated information in SOA always private and protected through the encryption of the messages exchanged between business partners.

 
 


Integrity

 


Non-repudation

 


 Auditory

 
Ensuring, through the use of encryption, that the information is not manipulated thus preventing that outsiders have access to remove or alter it, which guarantees that the message can not be tampered since it is generated, during the sending process, nor in its destination.

 

 
ITAC WS-Guardian® ensures that requests can not be denied when its source is confirmed when complying with the access policies defined to the user through the use of signatures. In this case, digital signatures are used to endorse the authenticity of the parties involved in the transaction as a support, just like a legal document physically signed between the parties.
 
Every transaction can be saved under different detail levels, as the case of an incident, audit trails reveal all activities related to the exposed Web service and enables the analysis to establish the events, their executor and the consequences in the process.
 
          ...................................................  

 

Back to menu


..........................................................................................................................................................................


Run-time governance for web services life-cycle

The SOA run-time governance platform, ITAC WS-Guardian®, is focused on the services life-cycle and on composite applications within a service-oriented architecture, enabling the organization to increase the flexibility and the cross-performance of business services.

ITAC WS-Guardian® creates clear communication channels that help the IT team in the process of aligning projects to business goals, enabling full visibility of the architecture for its accurate tracking. ITAC WS-Guardian® generates detailed reports and notification of changes applied to each one of the processes for the performance of management assessments.

It acts as an active and robust support mechanism for decision-making regarding the development, deployment and management of new services; as well as the relationship between all operating systems and parties management, in addition to compliance with laws, policies standards and procedures to which the company is subject.

Reduces costs associated with loss of time due to conflict mismanagement, since ITAC WS-Guardian® enables easy application of governance roles to which responsibilities are assigned based on pre-established policies that improve the performance of activities for employees.

 

Back to menu


..........................................................................................................................................................................


Reduced workload in the governance process.

When an organization implements a service-oriented architecture (SOA), the challenge lies in being able to make an appropriate deployment and management of services, specially because SOA-based applications are typically composites of disparate application components including reusable services developed in different technologies and executed on different machines.

ITAC WS-Guardian® enables organizations to centrally manage all of the security, audit and governance policies for the consumption of the exposed services, achieving all these policies decoupling from the business logic.

By performing this decoupling, organizations can control the entire cycle of services deployment and apply security policies uniformly for any platform that exposes Web services, regardless of the technology in which they are implemented (Java,. Net, Legacy) and without requiring any modification of these platforms.

This feature significantly speeds up the implementation of any policy by enabling significant savings in administration and services delivery. ITAC WS-Guardian® is a competitive advantage for the organization, as it reduces the time required to deploy new SOA services securely, thus you can focus your efforts on the development of new functionalities required by the business.
 

Back to menu
 

..........................................................................................................................................................................


Centralized management of services.

One of ITAC WS-Guardian® key features related to SOA Governance is that it allows to manage all published services. Registering all necessary services with their respective management parameters into the platform of governance, which enables the definition of service characteristics: objective, attributes, end customers and the dependency relationship of the created service with other services.

Likewise, ITAC WS-Guardian® enables the assignment of management roles from a business perspective as well as responsible roles for implementation and support. It also provides guidance for implementing security policies that you deem necessary for the consumption of each one of the registered services.

 

Back to menu

 

..........................................................................................................................................................................


Automatic documentation.

ITAC WS-Guardian® is a SOA security and run-time governance platform that enables centralized management of the registered services and security policies, for accurate tracking of each Web service and users of the system with detail required. 

ITAC WS-Guardian® was designed to make possible for any organization to have in a single solution all of the existing SOA infrastructure management mechanisms and to fix most common problems: services inventory , version control, impact analysis on policy enforcement, security and documentation filters.

Furthermore, the solution enables the results filtering for easier services through a comprehensive menu with advanced search parameters.

 

Back to menu


..........................................................................................................................................................................


Third party solutions integration.

When an organization outsources software development is exposed to acquire products in programming languages and platforms that are not consistent with the company's enterprise architecture; besides, these products can implement security and service level agreements (SLAs) independently, making the deployment and management of the entire architecture much more complex. ITAC WS-Guardian® performs the proper integration of these outsourcing products with the existing enterprise components.
 

Back to menu
 

..........................................................................................................................................................................


Maintainability and organized growth of SOA architectures .

ITAC WS-Guardian® is able to maintain a layer for security and governance processes and another layer for services, both mutually independent. Processes can be modified without affecting at all any of the guarded services or the enterprise applications that interact with Web services. It also allows to apply changes to services technical foundations without affecting business processes.

ITAC WS-Guardian® platform with its flexible design significantly increases the SOA processes agility, isolates the changes impact and enables a proper utilization of the specialized skills of business analysts and IT developers.

 

Back to menu

 

..........................................................................................................................................................................


Architecture's security becomes a decision of the security area, rather than a problem in the IT area.

The implementation of ITAC WS-Guardian® to manage the security of a service-oriented architecture, allows publishing services as a backup, to which it is possible to apply a variety of fine-grained pre-set policies to control the consumption of each user in each service. The security layers become as strong as necessary to restrict access and use of each one of the exposed services.

SOA pre-established security policies , such as access filters, prevent companies from incurring in costs associated with the development of new security features within the architecture's structure; this can negatively impact the deployment and management of the predefined policies, due to the difficult integration between both parties.
 

Back to menu

 

 

 

 

 

 

© Copyright 2018. ITAC. / Diseño y Producción Sitio Web : ITAC : www.itac.co / Todos los derechos reservados. Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners.