Open identity solutions receive Liberty’s highest stamp of quality after demonstrating multi-vendor interoperability at latest testing event
Liberty Alliance Project – May 31, 2005 — The Liberty Alliance Project, a global consortium for open federated identity standards and identity-based Web services, today announced that products from eight companies successfully completed certification testing at Liberty’s most recent conformance event. These organizations demonstrated interoperability of products and solutions that incorporate Liberty’s Identity Web Services (1.0 and 1.1) and Identity Federation Framework (1.1 and 1.2) specifications.
After following a rigorous five-day testing program developed and managed by Liberty’s Conformance Expert Group, interoperable certification has been awarded to Axalto, Entr’ouvert, Epok, Nokia, Novell, Sun Microsystems, Symlabs and Trustgenix. These companies have been recognized as having products that meet Liberty’s standards for interoperability among open identity solutions.
Liberty Alliance is the only global standards organization offering regular testing events to ensure Liberty-enabled products and solutions are truly interoperable. Since Liberty launched its testing program in 2003, nearly 40 successful product tests have been completed. Liberty certification assures organizations that products will interoperate “out-of-the-box,” helping to save costs, shorten deployment cycles and increase productivity. The next event will take place in July when Liberty will become the first global standards organization to offer testing for SAML 2.0 OASIS Standard interoperability. “Liberty’s well established conformance program has steadily grown to reflect the interoperability requirements of both our members and the industry,” said Roger Sullivan, chair of the Liberty Alliance Conformance Expert Group and vice president of business development for Oracle’s Identity Management solutions. “Organizations can trust that products earning Liberty certification have been validated to meet the growing demand for identity solutions that are open, easy to deploy and interoperate from day one.”
The Liberty conformance program requires that each company successfully complete tests against scripts and scenarios prepared by the Liberty Alliance Conformance Expert Group and published on the Liberty Alliance website. As part of the testing, companies must demonstrate interoperability with at least two other randomly selected participants. The program requires repeated operation of the Liberty specification’s core features in many combinations and sequences and in different roles and contexts common to real-world deployments.
“Liberty welcomes the addition of new technologies to the growing list of Liberty-certified products and looks forward to extending our program to include SAML 2.0 interoperability testing starting in July,” said Donal O’Shea, Executive Director of Liberty Alliance. “Organizations already know they can rely on products that have earned Liberty certification to deploy quickly and interoperate with solutions from multiple vendors. By adding SAML 2.0 testing to our already successful program, Liberty is providing organizations with more opportunities for advancing open identity solutions.”
At the test event hosted by the IEEE Industry Standards and Technology Organization (IEEE-ISTO) and held in Piscataway, New Jersey, during the week of May 9-13, 2005, the following products and services demonstrated conformance with the Liberty Alliance Identity Federation Framework version 1.1 and 1.2 (ID-FF1.1 and ID-FF1.2), and the Liberty Alliance Web Services Framework version 1.0 and 1.1 (ID-WSF 1.0 and ID-WSF 1.1):
Axalto –Axalto’s robust iClient 1.0 technology package is a set of client components and a programmable smart card that supports the Liberty ID-FF 1.2 Liberty Enabled Client Profile (LECP) and Liberty ID-WSF 1.1 Liberty User Agent or Device (LUAD) WSC profiles. By supporting the LECP profile and acting as a LUAD-WSC, the Axalto iClient allows support for secure and mobile usage of user credentials using smart cards.
Entr’ouvert – Lasso is a free software C library, GNU/GPL licensed, which respects ID-FF 1.2 protocols. It works on GNU/Linux, Windows, Mac OS X and UNIX and has complete bindings for Java, Perl, PHP and Python languages. Lasso, built on powerful libraries (libxml2, XML Security Library, Open SSL), supports high workload. Using Lasso, like the French public sector and major worldwide companies can couple the needs of strong authentication with an absolute respect of users’ privacy.
Epok – The Epok TDX Server, Version 4.2, a Web Services development platform slated for market delivery in Q3 of this year, supports the Liberty ID-WSF v1.1 protocol allowing Web Service providers to deploy TDX within a Liberty circle of trust. Epok’s TDX 4.2 is a highly scaleable, Web-services based infrastructure that provides an innovative new data control layer to exercise explicit control over the exchange and use of valuable digital resources. The Epok TDX server employs addressable identifiers, data, metadata and policies to create the fundamental building blocks for managing digital relationships and controlling resource sharing. Epok TDX 4.2 further helps organizations manage complex relationships in its support for Liberty ID-WSF Authentication Service Specification, version 1.1 and Liberty ID-WSF Discovery Service Specification, version 1.1.
Nokia – Nokia Web Services Framework 1.0 for Series 60 makes it possible to implement true end-to-end Web services. The solution is compliant with both WS-I Basic Profile and Liberty ID-WSF 1.1. It will be implemented as a part of Series 60, Third Edition. Mobile operators, enterprises and service providers can now offer interoperable device-based Web services applications using open protocols.
Novell – Novell is developing a Web authentication/authorization product, code-named “Odyssey,” that enables the secure federation of identity data through both the Liberty Alliance specifications and the SAML protocol. With this, customers will have one of the industry’s first viable options for establishing trusted relationships with business partners based on open standards. It is scheduled to ship at the end of 2005. Sun Microsystems – Sun Java System Access Manager provides open, standards-based authentication and policy-based authorization with a single, unified framework for: securing the delivery of essential identity and application information, improving the user experience through single sign-on, and enabling trusted networks with partners, suppliers and customers. Access Manager was among the first identity management products to support federation standards, including Liberty Alliance Phase 2, SAML 2.0 and is certified Liberty Alliance Interoperable.
Symlabs – Symlabs has released v2.8 of SLIM IdP, SLIM SP Base and SLIM Personal Profile Server (SLIM = Symlabs Liberty Identity Manager). SLIM enables federated identities within the enterprise, simplifying identity management and significantly reducing support costs. Externally, SLIM also allows clients to improve customer services and increase revenue by deploying Identity and Service Providers in a partner-based “circle of trust”. SLIM v2.8 is certified by the Liberty Alliance to fully conform to ID-FF 1.2 IdP protocols as well as the following WSF 1.1 protocols: IDP, DS, LUAD WSC & LUAD WSP.
Trustgenix – Trustgenix IdentityBridge is an enterprise and carrier-grade federated identity management software application that integrates with any identity management or homegrown single sign-on (SSO) system. IdentityBridge enables companies and service providers to supply business partners, customers and consumers with secure access to applications and data that span multiple web sites. IdentityBridge 2.1 simultaneously supports the Liberty ID-FF 1.1, ID-FF 1.2, ID-WSF 1.0, and ID-WSF 1.1 protocols, as well as SAML 1.0 and SAML 1.1.
Liberty Alliance maintains a list of all products and services that have passed testing procedures. Information is available at: https://projectliberty.org/conformance.
About the Liberty Alliance Conformance Program
The conformance program managed by the Liberty Alliance validates implementations of the Liberty Alliance standards for federated network identity and identity-based Web services. The program helps vendors, integrators and implementers ensure interoperability between Liberty-enabled solutions. Liberty Alliance offers conformance events on a regular basis and recently expanded the program to include products and services implementing SAML 2.0. Interested parties should contact Liberty Alliance at firstname.lastname@example.org for logistics and registration information. The program is open to both members and non-members.
About the Liberty Alliance Project
The Liberty Alliance Project (www.projectliberty.org) is an alliance of more than 150 companies, non-profit and government organizations from around the globe. The consortium is committed to developing an open standard for federated network identity that supports all current and emerging network devices. Federated identity offers businesses, governments, employees and consumers a more convenient and secure way to control identity information in today’s digital economy, and is a key component in driving the use of e-commerce, personalized data services, as well as web-based services. Membership is open to all commercial and non-commercial organizations.
If you are interested in seeing the full list of Liberty Alliance members or are interested in becoming a member, please visit https://projectliberty.org.