Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

RSA Security Announces New Products and Partnerships for Web Services

  • 21 July, 2004 10:10

<p>RSA BSAFE® SWS-J software enables developers to create a trusted environment for application-to-application transactions</p>
<p>BEDFORD, Mass., July 21 2004 - RSA Security has announced new products and partnerships (see related July 20, 2004 press release) as part of its strategy to enable organizations to maximize their competitive advantage when deploying XML web services. As the use of web services increases, the need for comprehensive security solutions becomes even more critical. An efficient web services infrastructure can benefit enormously from leveraging and interacting with an identity management system, as well as lead to increased business opportunities and reduced costs. RSA Security has added these web services capabilities to its current identity and access management and authentication solutions – RSA ClearTrust® software, RSA® Federated Identity Manager and RSA Keon® software – and is also introducing RSA BSAFE® SWS-J software to help developers web service-enable applications.</p>
<p>RSA Security helps customers with the dynamic and changing environment of web services by offering a variety of products and services that support web services, and which meet the requirements for integrated and coordinated policy management and enforcement.</p>
<p>RSA Security provides:</p>
<p>- Centralization of all authentication and authorization decisions for web services via RSA ClearTrust software to provide a way to consistently manage security policy for both web and web service-enabled applications</p>
<p>- Federated identities and policies information via RSA Federated Identity Manager</p>
<p>- Certificate and validation services for web services (which are critical to closing and solidifying the “trust” model) via RSA Keon software</p>
<p>- Developer solutions for web services, providing a trusted party to bridge the interoperability gap of different or incomplete implementations from multiple vendors via RSA BSAFE software</p>
<p>- In conjunction with RSA Secured® business partners, complementary security capabilities such as schema validation, malicious content detection, message routing and crypto-acceleration of web services transactions</p>
<p>“Organizations are looking forward to a productive computing environment in which applications launched by a trusted user or system will be able to transact with multiple applications and enterprises across the Internet using web services, thus streamlining business processes for competitive advantage,” said Dan Blum, senior vice president and research director at the Burton Group. “RSA Security is active in shaping strong authentication and web services standards and technologies that will be required to ensure the adoption of web services as way to extend identity management infrastructures.”</p>
<p>As part of its strategy, RSA Security is announcing the availability of RSA BSAFE SWS-J software, one of the first commercially available Java solutions to support the OASIS Web Services Security (WSS) 1.0 standard. WSS is the fundamental standard providing security for web services transactions, and it forms the basis of security for emerging standards from OASIS and the WS-* specifications. RSA BSAFE SWS-J software is designed to help developers quickly and cost-effectively implement standards-based, interoperable security to enable web services.</p>
<p>The new product also includes high-performance implementations of XML Encryption and XML Digital Signing in compliance with the WS-Security 1.0 specification. Also, RSA BSAFE SWS-J software uses the Sun® Java Cryptographic Extensions (JCE) architecture and so can use any JCE provider. If an application requires a FIPS 140 compliant mode (to allow the product to be used by a US government agency), a developer can use the FIPS-validated RSA BSAFE Crypto-J 3.5 JCE provider with the RSA BSAFE SWS-J software.</p>
<p>“RSA Security is leading the way for software developers to secure web services applications and the transactions those web services exchange,” said Robert Ford, CTO of CyberSource, a leading provider of electronic payment and risk management solutions based in Mountain View, Calif. “Cybersource helps our customers safely make millions of online transactions. We rely heavily on application-to-application transactions to empower our customers and one of the differentiations for our service is that we create an end-to-end trusted environment for our customers. RSA BSAFE SWS-J software will simplify the process of adding standards-based, interoperable security to our web services applications.”</p>
<p>RSA BSAFE SWS-J software is engineered to enable acceptance and validation of widely used authentication methods, such as username/password and X.509 certificates. Additionally, the software is extensible to support other authentication methods – including RSA SecurID® two-factor authentication tokens, Kerberos tickets and SAML assertions. Also, RSA BSAFE SWS-J software is standards-based to help ensure interoperability between an organization’s web services implementations and those of their partners, customers and other third parties.</p>
<p>“Broad adoption of web services in business-to-business or business-to-consumer environments is dependent upon reliable, strong and transparent security,” said Rick Welch, vice president of developer solutions and professional services at RSA Security. “RSA Security helped create the standards and infrastructure to enable Internet-based commerce, and we are continuing our innovation by creating new products to web service-enable applications, establishing technology partnerships for seamless integration, and assisting in the development of new web service security standards.”</p>
<p>RSA BSAFE SWS-J software is available immediately for a pre-release version, with the final version to ship in the third quarter of 2004. For more information about RSA BSAFE SWS-J software, please visit or call 1-866-432-7233.</p>
<p>About RSA Security Inc.</p>
<p>RSA Security Inc. helps organizations protect private information and manage the identities of people and applications accessing and exchanging that information. RSA Security’s portfolio of solutions — including identity and access management, secure mobile and remote access, secure enterprise access and secure transactions — are all designed to provide the most seamless e‑security experience in the market. Our strong reputation is built on our history of ingenuity, leadership, proven technologies and our more than 14,000 customers around the globe. Together with more than 1,000 technology and integration partners, RSA Security inspires confidence in everyone to experience the power and promise of the Internet. For more information, please visit</p>
<p># # #</p>
<p>RSA, Secured, Keon, ClearTrust, BSAFE and SecurID are either registered trademarks or trademarks of RSA Security Inc. in the United States and/or other countries. Sun and Java are registered trademarks or trademarks of Sun Microsystems, Inc. in the United States and/or other countries. All other products and services mentioned are trademarks of their respective companies.</p>

Most Popular