Allows Organizations to Detect and Eliminate Design-Centric and
Attack-Centric Vulnerabilities for Closed-Loop Security
SAN FRANCISCO, RSA Conference 2005 (Booth #848), Feb. 15 /PRNewswire/ --
Forum Systems, the leader in Web services security for threat protection and
trust management, today announced Forum XRay(TM), a product that is designed
to close the loop between security enforcement and proactive policy design and
configuration. By reproducing undesired usage patterns and malicious
activity, Forum XRay is able to root out system weaknesses throughout the
service-oriented architecture (SOA) lifecycle -- enabling development and IT
operational teams to limit enterprise exposure.
Web services are prey to both accidental (design-centric) and malicious
(attack-centric) security exploits that can be extremely detrimental to an
organization because they have straight-through processing to critical
business functions. An exploit can lead to system delays, violations in
service level agreements, stolen data and false alarms that disrupt the flow
of information and time-sensitive decision making. In addition to enhancing
protection against malicious attacks, Forum XRay can dramatically reduce
development costs by eliminating programming errors early in the development
process and significantly shorten the time to market through systematic
regression testing.
Forum XRay works in conjunction with VulCon(TM)
(http://vulcon.forumsys.com/) and Forum XWall Web Services Firewall to create
a closed-loop security solution for SOAs. Forum VulCon is an online source of
XML-related threat intelligence and associated remedies is also being
announced at RSA. These integrated solutions are part of Forum Systems
Automated Threat Response Initiative(TM) aimed at reinventing the delivery of
vulnerability data, policy updates and software upgrades to XML firewalls and
security gateway products.
"Security is a continuous process that should not only focus on 'what you
know' but also try and anticipate 'what you do not know.' While we expect
technology to work, there will always be errors, exceptions and irregularities
that can negatively impact a business. Testing for security using a product
like Forum XRay reduces risk and allows organizations to move confidently
ahead with information sharing across XML firewalls," said Walid Negm, vice
president of marketing for Forum Systems.
About Forum XRay
By implementing systematic quality assurance to addresses functionality,
performance, availability and vulnerability, companies can mitigate the risk
of failures, accidents and cyber attacks. Forum XRay is a comprehensive
exposure-based policy testing solution that leverages Kenai's eXamineST web
services vulnerability assessment technology to offer the following feature
set:
* WS-I Basic Profile Compliance Validation
* Support for XML Digital Signatures, XML Encryption and WS-Security
Headers
* WSDL-Inspection User Interface
* Web Services Penetration Test Case Suite
* SOAP Request/Response Management
* HTTP Basic Authentication with SSL v3/TLS
* Detailed Logging and Monitoring
Forum XRay is available immediately and is priced at $500 per seat. For
more information visit http://forumsys.com/download_xray.htm
About Forum Systems
Trustworthy, ubiquitous and robust Web services can only be achieved by
combining security controls that are proactive, always on and systematic.
Forum Seamless Security Solutions Architecture (Forum S3A(TM)) is an adaptive
approach to building security minded service-oriented applications and
data-level networks using life-cycle solutions including vulnerability
management, testing systems, firewalls and gateways. Forum products are
available as software, PCI-card and appliance options and comply with
government requirements including FIPS Certification, Common Criteria EAL 4+
and JITC DoD PKI Certification. Forum Systems is an active a member of OASIS
and WS-I helping mature standards such as WS-I Basic Profiles, SAML and
WS-Security. Customers can immediately benefit from Forum technology that is
bundled with market leading products including Microsoft ISA Server 2004,
NetContinuum NC-1000 WSE, Network Engines Web Services (NEWS), and Oblix
COREid and COREsv. For more information on adaptive solutions for Web services
security visit http://vulcon.forumsys.com
Forum Systems, Inc. is the Leader in Web Services Security(TM) with a
comprehensive suite of trust management, threat protection and information
assurance solutions for the automated Web. Forum Systems flexible hardware,
software and embedded products make vibrant business communications possible
by actively protecting XML data and Web services across networks and business
boundaries. Forum's products have been chosen by over 80 Fortune 1000
industry leaders and are winners of Network Computing Magazine's
Well-Connected 2004 Award and Product of the Year 2004 Award, Network
Computing Magazine's Editor's Choice 2003 Award, Network Magazine's Product of
the Year 2003 Award and DEMO 2004 Invitation. Forum XWall Web Services
Firewall is the industry's only XML Firewall selected by InfoWorld LEADERBOARD
2004. Visit Forum at http://www.forumsys.com/.
SOURCE Forum Systems
 back to top
Related links:
http://www.forumsys.com
CONTACT:
Vanessa Miali of Kesselring Communications,
LLC, +1-503-380-1884, vanessa@kesselring.net, for Forum Systems
|
