Cavio Corporation – www.cavio.com
Cavio is transforming its solution to be SAML compliant in order to offer their services as an Identity Provider per the Liberty Alliance specification. Cavio utilizes biometrics to secure PKCS11 based soft tokens in a central server architecture to offer a high level of integrity to any Liberty Alliance customer application looking for Authentication Assertions. This solution will give consumers and business users biometric authentication for Internet- based resources, while allowing them to maintain control of their personal information and conduct business with other Liberty-enabled web sites.
Cavio’s C-Pass product works within the Liberty Alliance framework to provide Authentication Assertions. Our C-Sign product allows for the secure non-repudiatable digital signing of any web based transaction. Cavio utilizes multiple biometrics and password/PIN combinations in customizable configurations to secure PKCS11 based soft tokens into secure web servers. The combining of these technologies in one solution provides for safe identity management in addition to secure high-integrity identity assertions to Liberty Enabled interested parties. It is expected to ship in August of 2003.
Communicator Inc. – www.communicatorinc.com
Communicator Inc. has implemented the Liberty Alliance version 1.1 specifications into its Hub ID services to create a unified digital identity management service. Communicator Hub ID enables companies to securely extend the digital corporate identities of employees, customers, partners and suppliers beyond the enterprise in a federated manner. This enables identity related services such as single sign-on, self help systems, access to permissioned content and presence management. Communicator Inc is implementing the Liberty Alliance Phase 2 spec in its Hub ID service, making it available to all of its customers immediately upon delivery.
Datakey – www.datakey.com
Datakey CIP is a smart card and interface software package that gives organizations a single device to function as an individual’s identity throughout the enterprise – for both data and physical security. With broad support for an enterprise’s existing authentication mechanisms, Datakey CIP adds two-factor smart card security for passwords, dynamic passwords, Windows log-on, VPNs, web authorization, public key encryption, digital certificates and digital signatures. Enterprises benefit from enhanced security for their existing authentication methods while also taking advantage of smart card protection for PKI-enabled applications or simplifying any future migration to PKI. Datakey CIP is currently available.
DigiGAN – www.digigan.com
The DigiGAN Trusted Web Server(TM) (TWS) leverages the multi-level security (MLS) features inherent in a trusted operating system, such as Trusted Solaris, to provide security capabilities not available in any other Web server allowing data at different sensitivity levels to be served from the same physical machine, but still maintain security enforced by the kernel-level mandatory access control mechanisms of the trusted operating system. Due to the security features of the underlying operating system, the TWS is not vulnerable to any of the many common attacks against other Web servers, such as DoS, brute force, and other defacement attempts by hackers. TWS v2.1 contains support for LDAP, RADIUS, and Kerberos. DigiGAN’s Trusted Web Server is expected to support the Liberty Alliance 1.1 specification in the second half of 2003.
Entrust, Inc. – www.entrust.com
Entrust plans to integrate the Liberty Alliance version 1.1 specifications into its leading portfolio of security software solutions that provide businesses and governments with the information accountability and privacy they need to transform the way they conduct online transactions and manage relationships with customers, partners and employees. Over 1,200 enterprises and government agencies in more than 50 countries use Entrust’s solutions that integrate into the broad range of applications organizations use today to leverage the Internet and enterprise networks. Entrust plans to begin integration of the version 1.1 specifications into its enhanced Internet security portfolio in 2004.
Fujitsu Invia – www.invia.fujitsu.com
SDA Products – http://sda.invia.fujitsu.com
Fujitsu Invia SDA mPollux is designed to secure primarily web and wireless applications. It provides authentication and authorization services that can be used to control access to a single application, or to implement a Single Sign-On access control system for a variety of applications. Several different user authentication methods are supported, such as PKI, wireless PKI, telephone call or SMS based authentication. Authorization functions can be implemented combining the use of mPollux services and the access control features of the Web server product in use, or using the optional WebFront Access Control module of mPollux. The support for Liberty (both Identity and Service Provider) is expected to be available Q2 of 2003.
Hewlett Packard – www.jpn.hp.com/hpc/sp/icewall/eng/
HP’s IceWall SSO is a single sign-on solution that simplifies maintenance tasks for service administrators and allows users to access all the services with a single authentication. It improves existing systems and dramatically decreases the number of processes required in service development and management, while allowing new business models to be developed. It ensures a very high level of security and is flexible enough to permit the development of new business models. HP’s ceWall SSO solution is expected to support the Liberty Alliance 1.1 specifications in April 2003.
July Systems – www.julysystems.com
July’s data services infrastructure software solution – the July Meta-Service System (JMSS) – enables mobile operators to deliver high-value mobile data services to subscribers. JMSS compliance with Liberty Alliance 1.1 specifications allows the operator to take on the value-added role of a federated identity provider, thereby ensuring that subscribers can receive personalized information and transaction capabilities without compromising the privacy of their identity and profile information to application and content partners. JMSS will support features such as authentication context request, name registration request, federation and federation termination request, as well as implement SAML and signature-based message security. July Systems is committed to support all future Liberty Alliance specifications.
NeuStar – www.neustar.biz
NeuStar, Inc. is built on a foundation of trust and neutrality established over years securely and successfully managing critical registry and infrastructure services for the communications industry. This foundation of trust has set the stage for NeuStar to be a groundbreaking force in offering next-generation infrastructure services including federated digital identity, and the convergence of voice and data networks.
As a sponsoring member of Liberty Alliance, www.projectliberty.org, NeuStar is leading the way with first-of-its-kind, turn-key, Liberty-compliant identity management and federation services. NeuStar’s NeuLiberty suite of services offers Trust Circle Administration, Identity & Attribute Discovery Services, and Identity Management Services.
NeuStar’s NeuLiberty suite of services makes smart business sense in today’s competitive market environment. The NeuLiberty services provide a quick, reliable and cost-effective way to support business transactions in a secure network.
Novell Inc. – www.novell.com
An early access release of the Liberty identity provider for Novell eDirectory, previously code-named Saturn, is currently available as a free download to customers worldwide. Using the Liberty Alliance version 1.1 specifications, Novell’s Liberty identity provider allows businesses to securely establish links among internal, external and partner Web sites, giving users single sign-on between those Web sites via open standards. Equally important, the Liberty identity provider allows the users themselves to decide whether their identities will be federated from one Web site to another. Offering standards-based single sign-on helps companies drive more value from business relationships, build a more loyal customer base and help employees be more productive. For more information or to download the Liberty identity provider for Novell eDirectory, go to http://www.novell.com/liberty.
Oblix – www.oblix.com
By supporting the Liberty Alliance standards, Oblix NetPoint becomes a single identity management infrastructure that customers can deploy to support multiple, incompatible federated services. Oblix NetPoint has rich capabilities to integrate multiple, external authentication systems and services while providing organizations security and control over authorization to their valuable applications and content.
Phaos Technology Corp. – www.phaos.com
Phaos Technology, the worldwide leader in Java Security, understands the needs of Fortune 500 companies to protect users’ privacy and identity. Phaos Technology provides the modular components required by Liberty Identity Providers and Identity Service Providers to build interoperable applications faster, with less complexity. Using Phaos’ components, Java developers can create applications that provide important Liberty functionality like: identity/account linkage, simplified sign-on, consolidation of enterprise authentication schemes and integration of legacy systems with XML-based Web services.
Ping Identity Corporation – www.pingidentity.com
Ping Identity Corporation is the sponsor of SourceID (www.sourceid.org), an open source community that has quickly become the de facto open source implementation for the Liberty Alliance specifications. SourceID SSO is the first component of a larger open source Federated Identity Management system that will be developed and released under the SourceID community. SourceID SSO is designed to make it as easy as possible for companies to participate in Federated Single Sign-On. SourceID SSO focuses on two major capabilities: Liberty Alliance Protocol v1.1 interoperability, and easy deployment for Java web applications. In addition, SourceID intends to integrate all future Liberty Alliance specifications into its open source releases. It is available for free download at http://www.sourceid.org.
Ping Identity Corporation has also announced the PingID Network, a technology-neutral, member-owned, identity network that helps address the growing inefficiencies and security concerns surrounding the deployment of federated identity services. The PingID Network, which is organizationally modeled after traditional ATM member-owned networks, provides enterprises with the business and legal services they need to enable efficient linking and management of account information between corporations with the end-user’s explicit consent. The PingID Network offers enterprises the ability to accelerate their Liberty deployments with its LIVE (Liberty Interoperability Validation Environment) service, and is currently accepting members at www.pingid.com.
RSA Security Inc. – www.rsasecurity.com
RSA Security plans to support the Liberty Alliance specifications in future versions of its portfolio of identity and access management solutions. RSA Security’s Liberty-enabled solutions are designed to allow customers to achieve secure authentication, Web access management and single sign-on, both inside and outside of an organization. RSA Security expects the products to be available in early 2003.
Sun Microsystems Inc. – www.sun.com
Sun Microsystems offers an end-to-end identity management solution that addresses customers’ needs for heightened security, privacy and federated identity management, and is fully compliant with the Liberty Alliance version 1.1 specifications. The Liberty-enabled Sun ONE Identity Server 6.0 provides a complete identity and access management foundation that helps secure the delivery of business information, bridge and consolidate different identity silos, and enables enterprises to manage their users and the user’s relationships with the business applications and information. The Sun ONE Identity Server 6.0 is currently shipping.
Trustgenix, Inc. – www.trustgenix.com
The Trustgenix Federation Server (TFS) enables an enterprise to quickly adopt Liberty 1.1 based identity federation in a minimally disruptive way. The TFS is a J2EE based server that supports multiple application servers, databases and leading WAP Gateways. It is a scalable and robust platform designed to be rapidly deployed with minimal impact to existing applications. It provides extensive management and workflow capabilities and provides a simple API for integration. Real-world applications have been Liberty-enabled in a matter of less than one week. The server is available for a free evaluation download at www.trustgenix.com. The Trustgenix Federation Server will soon include features from the Liberty Phase 2 specifications making it even easier for applications to be identity- and data-federation enabled.
WaveSet Technologies – www.waveset.com
Waveset currently supports the Liberty Alliance version 1.1 specifications in its Lighthouse family of identity management solutions. Waveset Lighthouse integrates provisioning management, password management and identity profile management into one solution, leveraging its unique Virtual Identity Manager technology to manage federated identities within and across corporate boundaries. By supporting the Liberty Alliance specification, Waveset extends established security principles like automated provisioning, delegated administration, approval workflow, user self-service and audit and vulnerability detection to the world of federated identity management.