Presentation is loading. Please wait.

Presentation is loading. Please wait.

® Brian Breton Gradient Technologies, Inc. NetCrusader P R O D U C T F A M I L Y Extending the Benefits of DCE TOG DCE Program Group

PublishTamsyn Snow Modified over 9 years ago

Similar presentations

Presentation on theme: "® Brian Breton Gradient Technologies, Inc. NetCrusader P R O D U C T F A M I L Y Extending the Benefits of DCE TOG DCE Program Group"— Presentation transcript:

1

2 ® Brian Breton Gradient Technologies, Inc. NetCrusader P R O D U C T F A M I L Y Extending the Benefits of DCE TOG DCE Program Group brian@gradient.com Amsterdam, January 1998

3 © 1998 Gradient Technologies, Inc.Common Authorization Model NetCrusader Security ServerMultipleAuthenticationMethods Username/ Password Public-Key Certificate Two-Factor Authentication Customers Partners EmployeesMultipleUserPopulations Enterprise Security Infrastructure MultipleEncryptionMethods DES, SSL, RSA, CAST, others Legacy Heritage Web-based Multiple Application Types Distributed Security Management NetCrusader Commander

4 © 1998 Gradient Technologies, Inc. Infrastructure Requirement Leverage existing investmentsLeverage existing investments NetCrusader approach Support multiple application typesSupport multiple application types –Web-based –Heritage –Legacy

5 © 1998 Gradient Technologies, Inc. Infrastructure Requirement Leverage existing investmentsLeverage existing investments NetCrusader approach Support heterogeneous systemsSupport heterogeneous systems –Windows 3.1, 95, NT; Mac –Any browser-enabled client! –NT; UNIX (AIX, HP-UX, Solaris)

6 © 1998 Gradient Technologies, Inc. Infrastructure Requirement Availability and ScaleAvailability and Scale NetCrusader approach Leverage proven, replicable, distributed computing servicesLeverage proven, replicable, distributed computing services –Security services –Directory services –Time services –Others

7 © 1998 Gradient Technologies, Inc. Infrastructure Requirement Leverage existing investmentsLeverage existing investments NetCrusader approach Implement as value- added filters and extensions to commercial Web serversImplement as value- added filters and extensions to commercial Web servers –Netscape –Microsoft

8 © 1998 Gradient Technologies, Inc. NetCrusader Security Server Web browser NetCrusader + NetCrusaderClient Web browser only Leverage Existing Investments Microsoft/Netscape Web Server NetCrusaderCommander ISAPI/NSAPI Application Protocol Filter Entrust/HTTP; DCE/HTTP SSLMapper AuthZ Filter Signer NetCrusaderSecurityAdapter Username/Password or Public-Key Certificate NetCrusader Credentials Access Permissions Two-factor (optional) Two-factor (optional)

9 © 1998 Gradient Technologies, Inc. Securing the Large Enterprise The Integration of NetCrusader and Entrust

10 © 1998 Gradient Technologies, Inc. NetCrusader and Entrust NetCrusader Security Server Web browser NetCrusader + NetCrusaderClient + Entrust Client Microsoft/Netscape Web Server NetCrusaderCommander ISAPI/NSAPI Application CAST Protocol Filter Entrust Cast /HTTP Mapper AuthZ Filter Signer NetCrusaderSecurityAdapter Public-Key Certificate NetCrusader Credentials Access Permissions Entrust Session Entrust/Manager Security Server Entrust Session Token Card / SmartCard (optional)

11 © 1998 Gradient Technologies, Inc. Integrated Product Benefits Simplified key managementSimplified key management Easy-of-use for administrators, users, developersEasy-of-use for administrators, users, developers Full encryption capabilitiesFull encryption capabilities A single, standardized access control managementA single, standardized access control management Easy integration into existing environmentsEasy integration into existing environments

12 © 1998 Gradient Technologies, Inc. Developing Secure Web-based Java Applications The Integration of NetCrusader and NetDynamics

13 © 1998 Gradient Technologies, Inc. Copyright ©1997 Gradient Technologies, Inc. NetDynamics Components NetDynamics StudioNetDynamics Studio –A visual tool that allows developers to create database applications easily, using data and code objects –Supports wizards, Java classes, generation of server-side Java code NetDynamics Application ServerNetDynamics Application Server –High-performance, scalable Java-based server that controls applications and database connections

14 © 1998 Gradient Technologies, Inc. NetCrusader Security Server Web browser NetCrusader V3 and Netdynamics Microsoft/Netscape Web Server NetCrusaderCommander NetDynamics Security Adapter Protocol Filter SSL, Entrust/HTTP, DCE/HTTP Mapper AuthZ Filter Signer Username/Password or Public-Key Certificate NetCrusader Credentials Access Permissions Two-factor (optional) DBMS NetDynamics Application Server(s)

15 © 1998 Gradient Technologies, Inc. Developing Secure Web-based Applications The Integration of NetCrusader and Bluestone Sapphire/Web

16 © 1998 Gradient Technologies, Inc. Sapphire/Web Components Sapphire/Web IDESapphire/Web IDE –A visual tool that allows developers to create database applications easily, using data and code objects –Supports Java, C, C++ & numerous middleware choices including: IIOP, RMI, DCE, SSL and more... Sapphire/Web Application ServerSapphire/Web Application Server –High-performance, replicable, fault tolerant server that controls applications and database connections Sapphire/Web State ServerSapphire/Web State Server –Enables dynamic swapping of users between app servers

17 © 1998 Gradient Technologies, Inc. NetCrusader Security Server Web browser NetCrusader V3 and Sapphire/Web Microsoft/Netscape Web Server NetCrusaderCommander Sapphire/Web Security Adapter Protocol Filter SSL, Entrust/HTTP, DCE/HTTP Mapper AuthZ Filter Signer Username/Password or Public-Key Certificate NetCrusader Credentials Access Permissions Two-factor (optional) DBMS Sa[[hire/Web Application Server(s) Java, C++, C SapphireWeb State Server

18 © 1998 Gradient Technologies, Inc. Application Development & Deployment Time Web-based Applications Cuts Time-to-Market Traditional Client/Server Tools First-Generation Web Tools (CGI, C++) Second-Generation Web Tools Application Development Time Application Deployment Time Key NetDynamics/BluestoneAdvantage

19 © 1998 Gradient Technologies, Inc. Integrated Product Benefits More administrator control over application access control policiesMore administrator control over application access control policies –Exports data bindings to NetCrusader for enforcement and administration Easier management of security infrastructureEasier management of security infrastructure Single standardized facility for access control managementSingle standardized facility for access control management Consistent security model across all tiers in the distributed environmentConsistent security model across all tiers in the distributed environment Easier application development through more flexible access control mechanismsEasier application development through more flexible access control mechanisms

20 © 1998 Gradient Technologies, Inc. Extending Enterprise Security with Two-factor Authentication The Integration of NetCrusader & PC-DCE and Security Dynamics SecurID Token Cards

21 © 1998 Gradient Technologies, Inc. NetCrusader and SecurID Token Cards NetCrusader Security Server Web browser NetCrusader + NetCrusaderClient + SecurID Microsoft/Netscape Web Server ISAPI/NSAPI Application Protocol Filter DCE/HTTP Mapper AuthZ Filter Signer NetCrusaderSecurityAdapter Username/Password or Public-Key Certificate NetCrusader Credentials Access Permissions NetCrusaderCommander SDI Client SDI ACE Server

22 © 1998 Gradient Technologies, Inc. Integrated Product Benefits Two-factor authentication adds extra level of securityTwo-factor authentication adds extra level of security Eliminates use and risk of passwordsEliminates use and risk of passwords Removes user password managementRemoves user password management

23 © 1998 Gradient Technologies, Inc. Portable Public-Key Authentication The Integration of NetCrusader and Litronic SmartCards and Readers

24 © 1998 Gradient Technologies, Inc. NetCrusader and Litronic SmartCards and Readers NetCrusader Security Server Web browser & optional NetCrusader Client Microsoft/Netscape Web Server NetCrusaderCommander ISAPI/NSAPI Application Protocol Filter SSL, Entrust/HTTP, DCE/HTTP Mapper AuthZ Filter Signer NetCrusaderSecurityAdapter Username/Password or Public-Key Certificate NetCrusader Credentials Access Permissions Litronic SmartCard and Reader

25 © 1998 Gradient Technologies, Inc. Integrated Product Benefits Public Key authentication and mapping to a NetCrusader Universal IdentityPublic Key authentication and mapping to a NetCrusader Universal Identity Single sign-on (SSO) to NetCrusader enabled applications including internally developed and 3rd party like SAP & PeoplesoftSingle sign-on (SSO) to NetCrusader enabled applications including internally developed and 3rd party like SAP & Peoplesoft

26 © 1998 Gradient Technologies, Inc. PeopleSoft looks to industrial strength security The Integration of NetCrusader and PeopleSoft

27 © 1998 Gradient Technologies, Inc. Integrated Product Benefits Public Key authentication and mapping to a NetCrusader Universal IdentityPublic Key authentication and mapping to a NetCrusader Universal Identity Single sign-on (SSO) to PeopleSoft applicationsSingle sign-on (SSO) to PeopleSoft applications Secure Web access to Peoplesoft applications through standardized access control managementSecure Web access to Peoplesoft applications through standardized access control management

28 © 1998 Gradient Technologies, Inc. Integrated Product Benefits Consistent security model across all tiers in the distributed environmentConsistent security model across all tiers in the distributed environment Complements existing relationship with NetdynamicsComplements existing relationship with Netdynamics Complements strategy for other RAD partners--BluestoneComplements strategy for other RAD partners--Bluestone

29 © 1998 Gradient Technologies, Inc. Secure Web access to SAP’s R/3 An Integration project by Gradient and Deloitte & Touche for SAP

30 © 1998 Gradient Technologies, Inc. NetCrusader / Deloitte & Touche Integration Access Control Library NetDynamics Security Adapter Web Server with WebCrusader Security Adapter NetDynamics Application Server NetCrusader Commander Web Browser Access Control Database SAP Applications Data Source

31 © 1998 Gradient Technologies, Inc. Integrated Product Benefits Solution (NetCrusader, NetDynamics, and D&T) leverages NetCrusader security services and NetDynamics development tools to create Web-based front-ends to new or existing SAP functionalitySolution (NetCrusader, NetDynamics, and D&T) leverages NetCrusader security services and NetDynamics development tools to create Web-based front-ends to new or existing SAP functionality Secure access to SAP R/3 by extracting digital signature from public key certificate and mapping it to a NetCrusader Universal User IdentitySecure access to SAP R/3 by extracting digital signature from public key certificate and mapping it to a NetCrusader Universal User Identity

32 © 1998 Gradient Technologies, Inc. Integrated Product Benefits Takes advantage of NetDynamics SAP Platform Adapter Components (PAC)Takes advantage of NetDynamics SAP Platform Adapter Components (PAC) Single Sign-On (SSO) extends to include SAP R/3 applicationsSingle Sign-On (SSO) extends to include SAP R/3 applications Tools for simplified, decentralized management of the security infrastructureTools for simplified, decentralized management of the security infrastructure

33 © 1998 Gradient Technologies, Inc. Developing Secure Object-based Applications The Integration of PC-DCE and IONA Orbix

34 © 1998 Gradient Technologies, Inc. PC-DCE and OrbixSecurity Client OrbServer Orb Orbix RT PC-DCE RT Orbix RT PC-DCE Security Server IIOP OrbixSecurity

35 © 1998 Gradient Technologies, Inc. Integrated Product Benefits Introduces security to object-based applicationsIntroduces security to object-based applications No application modification requiredNo application modification required Consistent security model across all tiers in the distributed environmentConsistent security model across all tiers in the distributed environment Single standardized facility for access control managementSingle standardized facility for access control management Easier management of security infrastructureEasier management of security infrastructure

36 © 1998 Gradient Technologies, Inc. There are many others... Transarc DFSTransarc DFS Transarc EncinaTransarc Encina Checkpoint Firewall-1Checkpoint Firewall-1 Oracle ANOOracle ANO Sybase Open Client, Open ServerSybase Open Client, Open Server VersatilityVersatility ManugisticsManugistics

37 © 1998 Gradient Technologies, Inc. Distributed Security Management Graphical management of users and groupsGraphical management of users and groups

38 © 1998 Gradient Technologies, Inc. NetCrusader and Sapphire/Web deliver the best of security and RAD CrossRoads 98 Award Winner for Security InfrastructureCrossRoads 98 Award Winner for Security Infrastructure CrossRoads 98 Award Winner for RAD toolsCrossRoads 98 Award Winner for RAD tools NetCrusader

39 © 1998 Gradient Technologies, Inc. Gradient’s NetCrusader Gradient’s NetCrusader succeeds in delivering a comprehensive enterprise-wide security infrastructure thru both innovation and partnership with market and technology leaders

40 P R O D U C T F A M I L Y ® NetCrusader Security Solutions for the Enterprise Gradient Technologies, Inc. 2 Mount Royal Avenue Marlborough, MA 01752 USA +1 508 624 9600 http://www.gradient.com/

Download ppt "® Brian Breton Gradient Technologies, Inc. NetCrusader P R O D U C T F A M I L Y Extending the Benefits of DCE TOG DCE Program Group"

Similar presentations

Citrix Secure Gateway v1.1 Technical Presentation August 2002 Technical Presentation August 2002.

Citrix Secure Gateway v1.1 Technical Presentation August 2002 Technical Presentation August 2002.
Introduction to z/OS Security Lesson 4: There’s more to it than RACF

Introduction to z/OS Security Lesson 4: There’s more to it than RACF
1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.

1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.
Lee Hang Lam Wong Kwun Yam Chan Sin Ping Wong Cecilia Kei Ka Mobile Phone OS.

Lee Hang Lam Wong Kwun Yam Chan Sin Ping Wong Cecilia Kei Ka Mobile Phone OS.
Netscape Application Server Application Server for Business-Critical Applications Presented By : Khalid Ahmed DS 520 - Fall 98.

Netscape Application Server Application Server for Business-Critical Applications Presented By : Khalid Ahmed DS Fall 98.
Active Directory: Final Solution to Enterprise System Integration

Active Directory: Final Solution to Enterprise System Integration
DEV392: Extending SharePoint Products And Technologies Through Web Parts And ASP.NET Clint Covington, Program Manager Data And Developer Services - Office.

DEV392: Extending SharePoint Products And Technologies Through Web Parts And ASP.NET Clint Covington, Program Manager Data And Developer Services - Office.
PKI 2: Protezione del traffico Web tramite SSL Fabrizio Grossi.

PKI 2: Protezione del traffico Web tramite SSL Fabrizio Grossi.
Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.

Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.
Identity and Access Management: Strategy and Solution Sandeep Sinha Lead Product Manager Windows Server Product Management Redmond,

Identity and Access Management: Strategy and Solution Sandeep Sinha Lead Product Manager Windows Server Product Management Redmond,
ISA 3200 NETWORK SECURITY Chapter 10: Authenticating Users.

ISA 3200 NETWORK SECURITY Chapter 10: Authenticating Users.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 10 Authenticating Users By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 10 Authenticating Users By Whitman, Mattord, & Austin© 2008 Course Technology.
RSA SecurID November 10, 2005.

RSA SecurID November 10, 2005.
Web-based Portal for Discovery, Retrieval and Visualization of Earth Science Datasets in Grid Environment Zhenping (Jane) Liu.

Web-based Portal for Discovery, Retrieval and Visualization of Earth Science Datasets in Grid Environment Zhenping (Jane) Liu.
Microsoft Exchange Exchange is more than just Electronic Mail The server that embraces Internet standards and extends rich messaging and collaboration.

Microsoft Exchange Exchange is more than just Electronic Mail The server that embraces Internet standards and extends rich messaging and collaboration.
Public Key Infrastructure from the Most Trusted Name in e-Security.

Public Key Infrastructure from the Most Trusted Name in e-Security.
JVM Tehnologic Company profile & core business Founded: February 1992; –Core business: design and implementation of large software applications mainly.

JVM Tehnologic Company profile & core business Founded: February 1992; –Core business: design and implementation of large software applications mainly.
Cognizance Identity and Access Management Identity Management ● Authentication ● Authorization ● Administration The next generation security solution www.cognizancesecurity.com.

Cognizance Identity and Access Management Identity Management ● Authentication ● Authorization ● Administration The next generation security solution
May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.

May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.
RSA Security Validating Users and Devices to Protect Network Assets Endpoint Solutions for Cisco Environments.

RSA Security Validating Users and Devices to Protect Network Assets Endpoint Solutions for Cisco Environments.

Similar presentations

Ads by Google