Liberty Alliance Project – August 16, 2005 — The Liberty Alliance Project, a global consortium for open federated identity standards and identity-based Web services, today announced that products from eight companies successfully completed testing at Liberty’s most recent interoperability conformance event. These organizations demonstrated interoperability of products and solutions that incorporate Liberty’s Identity Web Services (1.1) and SAML 2.0 OASIS Standard specifications. This event marks the first time Liberty has tested for SAML 2.0 interoperability.
After following a rigorous testing program developed and managed by the Liberty Alliance, passing marks for SAML 2.0 interoperability have been awarded to the Electronics & Telecommunications Research Institute, Ericsson, Novell, Oracle, Reactivity, Sun Microsystems, Symlabs and Trustgenix. These companies have been recognized for having products that meet Liberty’s standards for interoperability among open federated identity solutions and identity-based Web services.
“It’s all about the reality of products that work together in actual deployments,” said Earl Perkins, vice president, Gartner, Inc. “Formal testing programs that prove products from different vendors can work together with a new standard are important. Vendors that pass the tests are showing due diligence in meeting industry requirements for interoperability, and products that use OASIS interoperability standard SAML 2.0 are fulfilling one of those key requirements.”
Liberty Alliance is the only global identity organization offering regular testing events and the first standards organization to offer interoperability testing for SAML 2.0. Products are tested to ensure that they exercise the Liberty protocols that will be used in real-world deployments. Organizations can trust that products passing Liberty interoperability testing will interoperate from day one and over the long-term. This reduces costs, shortens deployment cycles and makes implementing open identity solutions easier. Since Liberty launched its testing program in 2003, nearly 60 successful product tests have been completed.
“Liberty’s latest testing program marks a significant advancement for organizations looking to deploy open identity solutions based on SAML 2.0 specifications,” said Roger Sullivan, chair of the Liberty Alliance conformance program and vice president of business development for Oracle’s Identity Management solutions. “As organizations increasingly migrate to SAML 2.0 technologies, they can count on products that have passed Liberty’s interoperability testing for faster and more successful deployments.”
The Liberty Interoperable ™ testing program requires that each company successfully completes tests against scripts and scenarios prepared by Liberty Alliance and published on Liberty’s website at https://www.projectliberty.org/activities/conformance.php. As part of the testing, companies must demonstrate interoperability with at least two other randomly selected participants. The program requires repeated operation of the Liberty specifications core features in many combinations and sequences and in different roles and contexts common to real-world deployments.
“We congratulate the first companies passing Liberty’s SAML 2.0 interoperability testing and welcome them to the continuously growing list of organizations that have demonstrated multi-vendor interoperability of Liberty-enabled products,” said Donal O’Shea, executive director, Liberty Alliance. “When organizations specify SAML 2.0 products that have successfully completed the Liberty Interoperable Testing program, they know they will receive solutions that deploy quickly and offer the industry’s greatest levels of interoperability.”
At the test event hosted by the IEEE Industry Standards and Technology Organization (IEEE-ISTO) and held in Piscataway, New Jersey, during the week of July 25-29, 2005, the following products and services demonstrated interoperability with one or more of the following Liberty Alliance specifications: Liberty Alliance Web Services Framework version 1.1 (ID-WSF 1.1) and SAML 2.0 OASIS Standard specifications:
Electronics & Telecommunications Research Institute – ETRI SAML v2.0 Toolkit is an integrated, scalable and robust Web SSO library with federated identity capabilities. ETRI SAML v2.0 Toolkit supports the full complement of SAML v2.0 protocols, and is specially designed to provide a simple and quick way of allowing customers to deploy Web SSO service based on SAML. The toolkit focuses on ease-of-integration and deployment within existing web applications, products or services.
Ericsson – Ericsson USIS (User Session and Identity Server) provides full-fledged federated identity framework infrastructure for telecom operator services. These services incorporate the telecom subscriber identity dimension by having USIS as a gateway to existing subscriber management infrastructure at the operator networks. USIS is the core product of Ericsson digital identity solutions that cover all subscriber management aspects of operators fulfillment and assurance processes in the delivery of services to end-users. Earlier releases of USIS (namely USIS1.0 and USIS2.0) incorporated already different versions of the Liberty specifications. This important achievement of certifying the USIS3.0 product for SAML2.0 in our digital identity portfolio enhances functionality as specifications have developed, and also adds the extra value of a true web services standard organization like OASIS, that in this case validates the ability for the SAML2.0 based federation framework to evolve smoothly towards a standard web services environment.
Novell – Novell Identity Provider, a component of Access Manager, to be released in early 2006, will provide customers with a comprehensive access management solution based on federation for both web and enterprise applications. Customers can enforce access policies and integrate with the identity infrastructure to securely share user credentials based on the Liberty Alliance specifications and the SAML protocols. This will be a truly viable solution for establishing trusted business relationships to secure both existing and new applications based on open standards.
Oracle – Oracle® Identity Management is a comprehensive identity and access management infrastructure solution that safeguards information, critical systems and applications, against unauthorized access. A component of Oracle Fusion Middleware, Oracle Identity Management supports the Liberty ID-FF and OASIS SAML protocols. This support enables organizations and service providers to deploy identity in a circle of trust.
Reactivity – Reactivity XML Gateways 2450s secure, manage and optimize XML traffic with optimized federated identity capabilities. Reactivity proved conformance with SAML Attribute Authority Requester, enabling enterprises to seamlessly apply and integrate federated identity to their XML Web services initiatives.
Sun Microsystems – Sun Java™ System Access Manager provides open, standards-based authentication and policy-based authorization with a single, unified framework for: securing the delivery of essential identity and application information, improving the user experience through single sign-on, and enabling trusted networks with partners, suppliers and customers. Access Manager is certified Liberty Alliance Interoperable and is consistently one of the first identity management products to support the latest federation standards, including Liberty Alliance Phase 2 and SAML 2.0.
Sun Microsystems – Sun Java System Federation Manager 7.0, a low-cost, easy-to-deploy solution for federation, which provides secure management of digital identities across corporate boundaries between partners and service providers. Federation Manager is certified Liberty Alliance Interoperable and supports Liberty Alliance Phase 2 and SAML 2.0.
Symlabs – SLIM version 2.9, the Symlabs Federated Identity Management product, was awarded, in the first ever interoperability event in July 2005, the certification for OASIS SAML 2.0 conformance for all profiles available. SLIM provides multi-protocol federated identity solution encompassing ID-FF 1.2 (certified in Oct 2004), ID-WSF 1.1 (certified in May 2005), and WS-Federation (interoperability demonstration in Burton Catalyst 2005) in Identity Provider, Service Provider, and Enhanced Client roles. Symlabs complements the SLIM solution for Identity Management front-end with Directory Extender product which addresses ID fire-walling and backend requirements, allowing customers to obtain a complete turnkey IdM solution.
Trustgenix – Trustgenix IdentityBridge is an enterprise and carrier-grade federated identity management software application that integrates with any identity management or homegrown single sign-on (SSO) system. IdentityBridge enables companies and service providers to supply business partners, customers and consumers with secure access to applications and data that span multiple web sites. IdentityBridge 2.5 simultaneously supports the Liberty ID-FF 1.1, ID-FF 1.2, ID-WSF 1.0, and ID-WSF 1.1 protocols, as well as SAML 2.0, SAML 1.0 and SAML 1.1.
Liberty Alliance maintains a list of all products and services that have passed testing procedures. Information is available at: https://projectliberty.org/activities/conformant_products.phpAbout the Liberty Interoperable™ Program
The Liberty Interoperable Program validates implementations of the Liberty Alliance standards for federated network identity and identity-based Web services. The program helps vendors, integrators and implementers ensure interoperability between Liberty-enabled solutions. Liberty Alliance offers interoperability events on a regular basis and recently expanded the program to include products and services implementing SAML 2.0. Interested parties should contact Liberty Alliance at email@example.com for logistics and registration information. The program is open to both members and non-members.
About the Liberty Alliance Project
The Liberty Alliance Project (www.projectliberty.org) is an alliance of more than 150 companies, non-profit and government organizations from around the globe. The consortium is committed to developing an open standard for federated network identity that supports all current and emerging network devices. Federated identity offers businesses, governments, employees and consumers a more convenient and secure way to control identity information in today’s digital economy, and is a key component in driving the use of e-commerce, personalized data services, as well as web-based services. Membership is open to all commercial and non-commercial organizations.
If you are interested in seeing the full list of Liberty Alliance members or are interested in becoming a member, please visit www.projectliberty.org.
Oracle, JD Edwards, PeopleSoft, and Retek are registered trademarks of Oracle Corporation and/or its affiliates.