OpenPMF 2.0 plug-in for RTI's Data Distribution Service (DDS) demonstrated and announced
ObjectSecurity worked with RTI to build an OpenPMF 2.0 security policy enforcement and monitoring plug-in for RTI's real-time, high-performance, data-centric DDS middleware.
OpenPMF 2.0 plug-in for RTI DDS – OpenPMF 2.0 can now be used for authorization management for Data Distribution Service (DDS). A demonstrator has been developed in collaboration with Real Time Innovations, Inc, (RTI), a Santa Clara, CA, USA, based DDS middleware vendor. The current demonstrator allows the specification of identity-based policies for publishers and subscribers, and the runtime monitoring of violations. All this is done in a central, consistent, Eclipse-based GUI. Thanks to the OpenPMF 2.0 toolkit approach, additional, richer, customer- specific policies can be easily supported. Further collaboration with RTI is envisaged to extend this functionality.
The plug-in was demonstrated to the public at the SOA Consortium & OMG Technical Meeting in Burlingame, CA, USA, on 13-14 December 2007 (see photo)
OpenPMF 2.0 update website
OpenpMF 2.0, the first fully model-driven enterprise security management system in the market, is fully integrated into Eclipse, which allows its use from most model driven engineering tools, BPM tools, etc. This phase 0 includes (within Eclipse) a rich policy wizard, run-time monitoring, and support for model driven security model transformations. Phase 1 will be available in November 2007.
OpenPMF 2.0 is the first generic Model Driven Security (MDS) technology in the world, and includes an entitlement-centric authorization management system. OpenPMF 2.0 is the only generic model-driven security management solution in the market today. OpenPMF 2.0 enables low-complexity and low-maintenance authorization management from within the Eclipse open source IDE. Model-driven security allows you to express consistent security requirements at an intuitive high level of abstraction (rather than at a technical level). Large organizations in many sectors including defense, air traffic control, airports, homeland security, telecoms, banking, and enterprise management are currently very interested in OpenPMF 2.0. This is because the cost-savings are significant because security complexity and policy maintenance are reduced to a minimum.
OpenPMF 2.0 TrustedSOA™ is also the only solution available today that can be used to manage security cost-effectively for Service Oriented Architecture (SOA) in a way that preserves SOA agility. SOA agility is the main selling factor for SOA. OpenPMF 2.0 can of course also be used to protect non-SOA environments. For example it can be integrated into the software development process (OpenPMF 2.0 SecureMDA™), and security for practically any technology can be managed using OpenPMF 2.0.
(See www.openpmf.com for details; a OpenPMF 2.0 demo is also available)
MICO CORBA TRAINING & MIGRATION PROJECT FOR ESG FOR GERMAN MILITARY
ObjectSecurity delivers a 5-day MICO CORBA training course and migration services to ESG in December 2007. The project is part of a migration of the Germany military to MICO open source CORBA, which is maintained by ObjectSecurity.
Apart from that, ObjectSecurity's other projects are ongoing: model driven SOA security projects for QinetiQ and BAA, OpenPMF 2.0 integration with RTI DDS, and air traffic control R&D as part of SWIM-SUIT.
|
Security Management Ecosystem
ObjectSecurity is currently forming strategic partnerships with vendors who would like to add OpenPMF security to their technologies, Cambridge, 31 July 2007
New website and product literature
ObjectSecurity has consolidated its website and provide a wealth of new information about OpenPMF. New information flyers are also available for OpenPMF, SecureMDA, and TrustedSOA. There is also a new SOA security services webpage under the services menu.
ObjectSecurity identified by Gartner as model driven security innovator
ObjectSecurity, the world leader in model driven security, is a listed vendor on the "Hype Cycle for Information Security 2007", and in RN "Model-driven security: Enabling Real-Time, Adaptive Security Infrastructure" & revised RN "Tear Down Application Authorization Silos With Authorization Management Solutions", Cambridge, UK,ca. 31 August 2007
|
|
OMG Technical Meeting Washington, DC, USA
ObjectSecurity is planning to attend the SOA Consortium & OMG techncal meeting in Washington DC, USA, 10-14 March 2007. Contact us to arrange a meeting.
RSA USA 2008
ObjectSecurity will attend RSA 2008, San Francisco, CA, USA, 4-7 April 2008. We may also exhibit OpenPMF 2.0 (tbc). Contact us to arrange a meeting.
|
