Company Snapshot: RSAS  Print This Story  Email This Story  Save this Link View PR Newswire's RSS Feed  Blogs Discussing this News Release  Search Blogs that Mention this News Release  Click this link to view linked Bookmarking Services Click this link to view linked Blogging Services

RSA Security Unveils Simplified Approach to Application Security with RSA BSAFE(R) Data Security Manager
 
  Policy-Based Data Security Ensures Consistent Data Protection and Reduces
                     Application Development Complexities

    BEDFORD, Mass., June 6 /PRNewswire-FirstCall/ -- RSA Security Inc.
(Nasdaq: RSAS) today announced RSA(R) BSAFE(R) Data Security Manager, a
security middleware solution for software developers that simplifies and
strengthens application security by putting security decisions and design in
the hands of security experts while easing the implementation of security for
developers.  RSA BSAFE Data Security Manager eliminates the need for
application developers to acquire specialized security knowledge, and provides
a centralized, policy-based control framework for ensuring that applications
meet critical business and regulatory requirements for protecting data.
    RSA BSAFE Data Security Manager software addresses this challenge by
shifting responsibility for making security decisions to security experts and
application architects in the design phase of the application development
process.  This, in turn, eliminates the need for the after-the-fact
troubleshooting often required with server- and appliance-based products,
which helps to cut costs and reduce the burden on IT operations managers and
resources.  According to Gartner, for purchased and internally developed
software, removing only 50 percent of software vulnerabilities before
production use reduces enterprise configuration management costs and incident
response costs by 75 percent.*  In addition, unlike many other security
toolkits, RSA BSAFE Data Security Manager software is easy for application
architects and developers to adopt and use.  By leveraging pre-defined
policies and simplifying implementation, RSA BSAFE Data Security Manager
software streamlines the application development process and makes it easier
for organizations to prove that security mechanisms have been implemented
consistently.
    "Organizations often have little confidence that they have implemented
security controls properly because of the high level of sophistication
required, and the result is too often an expensive or even embarrassing
scramble when a problem is found after rollout," said Ray Wagner, PH.D.,
Research Vice President, Gartner.  "The concept of a centralized, policy-based
approach to providing security to and within applications, rather than the
current, often ad hoc, approach, may allow organizations to more easily
control and audit application security, as well as change security policies
over time without reengineering applications."

    Policy Based Data Security: From the Front Lines
    RSA BSAFE Data Security Manager resides beneath a business application and
hosts the organization's data security policy, a library of all applicable
security mechanisms, as well as a protection engine for enforcing these
mechanisms.  Security mechanisms include encryption and decryption; signing
and verifying; message authentication; certificate processing; and secure
transport protocol implementations.  Security experts must first classify a
company's data based on function, levels of sensitivity, or regulatory needs.
These classifications are then mapped to the appropriate security mechanisms
required to secure that data to form the security policy.  When developers
begin to code, they only need to use simple programming interfaces provided by
the product whenever they operate on sensitive data.  The protection engine
within RSA BSAFE Data Security Manager intercepts the data passed through
these interfaces and automatically implements the correct security mechanisms
based on the pre-defined policy.  This policy can also change over time to
adapt to business requirements without requiring changes to application code.
This solution balances the manageability needs of IT managers, security
officers, and risk management analysts with the design and implementation
needs of application architects and developers.
    "As companies across industries, such as retail and financial services,
move to better protect sensitive customer and corporate data, these
organizations require a secure application infrastructure that is reliable,
consistent, and auditable," said Rick Welch, vice president, Developer
Solutions and Professional Services, at RSA Security.  "In addition,
organizations must leverage the expertise of both application developers, and
security, risk, and compliance managers.  RSA BSAFE Data Security Manager
enables companies to address this need, and ensures that data security
policies and rules are implemented consistently and that they can be monitored
and adjusted over time."
    RSA BSAFE Data Security Manager is expected to begin shipping in late
September 2005.

    About RSA Security
    RSA Security Inc. helps organizations and individuals confidently protect
identities and information access.  The company secures more than 15 million
user identities, safeguards trillions of business transactions annually, and
manages the confidentiality of data in tens of thousands of applications
worldwide.  RSA Security's portfolio of award-winning solutions -- including
identity & access management, secure mobile & remote access, secure enterprise
access, secure transactions and consumer identity protection -- sets the
standard in the industry.  Our strong reputation is built on a 20-year history
of ingenuity, leadership and proven technologies, and our more than 17,000
customers around the globe.  Together with more than 1,000 technology and
integration partners, RSA Security inspires confidence in everyone to
experience the power and promise of the Internet.  For more information,
please visit http://www.rsasecurity.com.
    * Gartner, September 22, 2004 -- "Management Update: Keys to Achieving
Secure Software Systems" (ID Number: G00124089)
    RSA, RSA Security and BSAFE are either registered trademarks or trademarks
of RSA Security Inc. in the United States and/or other countries.  All other
products and services mentioned are trademarks of their respective companies.

     For more information:
     Courtney Hohne                  Dave Howell
     OutCast Communications          RSA Security Inc.
     (415) 392-8282                  (781) 515-6303
     rsa@outcastpr.com               dhowell@rsasecurity.com
SOURCE RSA Security Inc.



Back to Topback to top

Related links:
  • http://www.rsasecurity.com
    CONTACT:
    Courtney Hohne, OutCast Communications,
    +1-415-392-8282, rsa@outcastpr.com; or Dave Howell of RSA
    Security Inc., +1-781-515-6303, dhowell@rsasecurity.com
    www.technorati.com Blogs Linking to this News Release at Technorati
    Issuers of news releases and not PR Newswire are solely responsible for the accuracy of the content.
    Terms and conditions, including restrictions on redistribution, apply.
    Copyright © 1996- PR Newswire Association LLC. All Rights Reserved.
    A United Business Media company.