Sign up for the Newsletter here

ObjectSecurity News Update - 09 June 2010

Greetings,

ObjectSecurity is part of a consortium that has just been awarded a 3 year collaborative research and development (R&D) project with the European Commission’s 7th Framework Programme (FP7). The project is called CRISIS, which stands for “CRitical Incident management training System using an Interactive Simulation” environment.

ObjectSecurity’s multi-person-year contribution involves the development of a model-driven architecture for secure information sharing. This architecture will allow different stakeholders to carry out training together while restricting access and information flow based on high-level security policy requirements. ObjectSecurity anticipates that the contribution will involve information modelling, information exchange modelling, model-driven security, various application platforms and more.

“This project allows us to finally develop the next steps to achieve our vision for security and compliance policy automation for today’s mission-critical, interconnected software application landscapes. We are pleased to work with such a competent and experienced project consortium.”

Dr. Ulrich Lang,
CEO and co-founder of ObjectSecurity

• Three-year EU FP7 R&D "CRISIS" contract signed
• Intel renews ObjectSecurity technical support contract
• New Version OpenPMF 3.0 Released!
• OpenPMF Security & Compliance as a Service alpha version
• ObjectSecurity and Promia implement XML security features for next-generation US military security technology
• New eBooks, Publications & Analyst Coverage
• ObjectSecurity is Promia Raven reseller for Europe
• Modeldrivensecurity.org blog

read on for more details ...

Three-year EU FP7 R&D "CRISIS" contract signed

ObjectSecurity is part of a consortium that has been awarded a 3 year collaborative research and development (R&D) project with the European Commission’s 7th Framework Programme (FP7). The project is called CRISIS, which stands for “CRitical Incident management training System using an Interactive Simulation” environment. The Goal of the CRISIS Collaborative Project is to research and develop in Europe:

1. A training and simulation environment that will focus on real-time decision making and response to simulated but realistic crises or critical incidents, focusing primarily on problem diagnosis, planning, re-planning, and acting, rather than just procedural training or familiarity with policies;
2. A distributed, secure, scalable, collaborative and interactive simulation and on-demand-training environment for crisis management training in airports, of individuals, teams, and teams of teams, working across multiple levels of an organisation, between organisations, and across different nations at a command post levels; and
3. A software architecture that will be capable of being readily re-configured and used for different scenarios at other airports, transport hubs, and other critical sites like power plants or factories;
4. A flexible platform that can also function as a test-bed and evaluation tool for new and current operational procedures, information sharing and planning tools.

ObjectSecurity’s multi-person-year contribution involves the development of a model-driven architecture for secure information sharing. This architecture will allow different stakeholders to carry out training together while restricting access and information flow based on high-level security policy requirements. ObjectSecurity anticipates that the contribution will involve information modelling, information exchange modelling, model-driven security, various application platforms and more.

Dr. Ulrich Lang, CEO and co-founder of ObjectSecurity comments: “This project allows us to finally develop the next steps to achieve our vision for security and compliance policy automation for today’s mission-critical, interconnected software application landscapes. We are pleased to work with such a competent and experienced project consortium.”

Webinar 01 July, 3pm CEST: OpenPMF for Intalio BPMS & Cloud

ObjectSecurity invites you to a webinar to discuss how OpenPMF security policy automation can be used for Intalio BPMS & Cloud application. Here are the registration details:

• Date: 01 July 2010
• Time: 3pm CEST (Contintental Europe), 2pm GMT (UK), 9am EDT (East Coast)
• Registration form: https://www2.gotomeeting.com/register/427040330

Intel renews ObjectSecurity technical support contract
Intel (Germany) has renewed their support contract, under which ObjectSecurity provides on-demand technical support for MICO CORBA.

New Version OpenPMF 3.0 Released!
ObjectSecurity offers a free trial of their packaged OpenPMF version for Intalio BPMS, which includes a number of cool new features (e.g. Axis2, JBoss support, multiple policies). More information here: Slide show online, free trial, webinar, podcast, white paper, demo videos, blogs, supported technologies etc.

OpenPMF 3.0 is out and is currently being deployed! OpenPMF helps develop, operate and maintain secure applications. It makes application security proactive, manageable, intuitive, cheaper, and less risky. The new version 3.0 extends OpenPMF 2.0 by a number of exciting features (see press release)..

“This major new OpenPMF 3.0 release brings our product to a new level when compared to v2.0, which was released almost 2.5 years ago. We are particularly proud that we were able to significantly extend the scope of OpenPMF to include Cloud computing support and BPM SOA support, and that we were able to put together a low-cost packaged entry-level product version. Important other new features are XACML and Syslog export, support for data driven DDS services, support for a new Web app server, and enhanced policy support. Our free trial version, webinars, webcasts, eBooks, whitepapers, and podcasts will make it easy to try out the new OpenPMF 3.0 version.”

---Ulrich Lang, PhD, co-founder and CEO

 

OpenPMF Security & Compliance as a Service alpha version
ObjectSecurity will launch a major cloud extension to OpenPMF 3.0 later this year. Contact us online for more details.

ObjectSecurity and Promia implement XML security features for next-generation US military security technology
(Palo Alto, CA, USA, and San Francisco, CA, USA – 30 April 2010) – ObjectSecurity, the leader for application security policy automation, and Promia, Inc., a leading provider of secure technologies to government and industry, today announced that they have been contracted for another project phase by US Navy (with Promia as the prime under a Promia Raven™ engineering & support contract, and ObjectSecurity as subcontractor). The main purpose of this project spiral is to implement a next-generation fullstack, high-assurance security intrusion detection and enforcement architecture and XML information assurance across US Navy networks. The project spiral involves integrating ObjectSecurity OpenPMF™ policy management with Promia Raven™ XML information exchange capabilities, and scalable Authorization Based Access Control (ZBAC) to distribute authorizations. A previous funded project milestone involved scoping the implementation.

New eBooks, Publications & Analyst Coverage
ObjectSecurity has released a number of exciting new publications, including:

1. eBooks
Cloud Security - SOA Security - Model Driven Security - Model Driven Security Accreditation - ObjectSecurity offers in-depth studies about hot topics in IT security. Current studies include Cloud security, SOA security, agile policy management ("model-driven security") and agile SOA accreditation/compliance ("model-driven security accreditation"). Other tailor-made studies can be produced upon request.

2. Scientific Paper
ObjectSecurity will present a paper about protecting Cloud applications with OpenPMF at the ISSE 2010 conference.

3. Conference Presentation
ObjectSecurity will brief NEASCOG (NATO HQ, Brussels, Belgium, 24 June 2010) about model driven security and ObjectSecurity's application security vision.

4. New Gartner Analyst Coverage
ObjectSecurity was covered in Gartner's "Entitlement Life Cycle Management: Access Control Through Entitlement Resolution" report (G00174164), 4 February 2010.

 

ObjectSecurity is Promia Raven reseller for Europe
ObjectSecurity is a reseller for US based Promia, Inc. Promia’s RavenTM Cyber asset and security management system provides a unified approach through a unique combination of capabilities in one product. No longer do you need to incur the cost, time or expensive skill sets to implement a comprehensive defense-in-depth solution.

 

Modeldrivensecurity.org blog
ObjectSecurity blog discusses model driven security, and now also model-driven security accreditation..

More Information:
News List - Events List - Publication List -Twitter

You are receiving this email because you have subscribed to ObjectSecurity's email newsletter.
Please contact us if you have any feedback - we aim to make this newsletter as useful as possible for you.
Please simply reply to this email with "unsubscribe" in the subject or body if you would like to unsubscribe.
We are aiming to make this newsletter as useful for you as possible, so any comments or suggestions would be greatly appreciated.
Simply reply to this email if you would like to get in touch with us. And please tell your colleagues about this newsletter.

Copyright (c) 2010 ObjectSecurity - all rights reserved - copyright & terms of use
Online version