(Formerly SafeTGate)

ACI Enterprise Security Services:SSL is a full NonStop implementation of Secure Sockets Layer (SSL). It supports both client and server authentication, and has been implemented to secure any sockets-based application. As a result, it works with any HP NonStop application (e.g.MQSeries, Pathway iTS, FTP), and is the only SSL implementation that has been certified with ACI's BASE24 solutions, and all of the WebGate products.

ACI Enterprise Security Services:AF is an “Application Firewall” designed to provide better security of HP NonStop resources. As more HP NonStop resources are exposed via new access methods, like Web services, there is a danger that legacy security controls may be circumvented. ACI Enterprise Security Services:AF ensures that only authenticated and authorized users are able to access protected resources, regardless of how those resources are accessed, or what those resources consist of. ACI Enterprise Security Services:AF works in conjunction with Insession''s WebGate product suite to provide secure XML and Web services access to Pathway, BASE24 and NonStop SQL databases.

ACI Enterprise Security Services:SSO is a Single Sign-On implementation modeled on the fundamentals of the Liberty Alliance. ACI Enterprise Security Services:SSO allows applications running on the NonStop Server and other platforms to "federate" their user-ids with other applications, meaning that Single Sign-On becomes relatively simple, while retaining all the security of the original applications.

The ACI Enterprise Security Services product suite is developed from the ground up as a NonStop application, providing all the scalability, fault-tolerance and performance you expect from all NonStop applications. It supports both the Guardian and OSS operating environments.

ACI Enterprise Security Services:SSL
Protecting all NonStop TCP/IP Communications

ACI Enterprise Security Services:SSL provides SSL and TLS capabilities on the HP NonStop server. As a full SSL implementation, it provides both SSL Client and SSL Server functionality, and each case supports authentication of the remote party’s X.509 certificate. ACI Enterprise Security Services:SSL runs under the Guardian personality of the HP NonStop server, meaning that all sensitive data is protected right into the application environment, removing the possibility of sniffing of data within the corporate firewall.

Running as either a sockets-based proxy server, or a built-in service, ACI Enterprise Security Services:SSL secures all TCP/IP sockets based applications, and has been tested with products such as GoldenGate, Pathway iTS and IBM WebSphere MQ. OSS-based applications are fully supported. ACI Enterprise Security Services:SSL is also the only HP NonStop SSL solution to be fully integrated and certified with ACI’s BASE24 and XPNET products.

ACI Enterprise Security Services:SSL also provides secure FTP support, in adherence to the draft standard “Secure FTP using TLS” specified by the Internet Engineering Task Force (IETF). This means that all sockets applications on the HP NonStop platform can now be encrypted and protected.

Back to top

ACI Enterprise Security Services:AF
Granular Authentication, Authorization and Auditing for all NonStop Applications

ACI Enterprise Security Services:Application Firewall (ACI Enterprise Security Services:AF)is designed to be used by any application to ensure that their resources are adequately protected, regardless of the method being used to access those resources. The application delegates access control decisions to ACI Enterprise Security Services, via a simple API.

ACI Enterprise Security Services, based on its configuration options,determines the type of authentication required for each user and protected resources,and then determines if that user is authorized to access the requested resource.

ACI Enterprise Security Services:AF has evolved from Insession Technology ’s extensive experience with security protocols such as SSL, and from initial customer usage of multiple X.509 Certif icate capabilities by HP NonStop users - Canadian Imperial Bank of Commerce and a large Canadian retailer. With the availability of ACI Enterprise Security Services:AF, corporations can take advantage of the first comprehensive solution on the HP NonStop Server that is based solely on industry standards.This greatly reduces the need to distribute and deploy any other components into end-user communities,which allows the end user to legitimately be anyone with a browser.

Back to top

ACI Enterprise Security Services:SSO
A Standards-compliant, NonStop Single Sign On Solution

ACI Enterprise Security Services Single Sign On (SSO) ties the other aspects of ACI Enterprise Security Services together under a simple, standards-based implementation of a Single Sign On server. The NonStop platform is ideally placed to act as an SSO server, with its well established fundamentals of fault-tolerance and scalability. After all, in most SSO environments, if the SSO server fails, then all applications that utilize that SSO server will also be down.

ACI Enterprise Security Services:SSO is a lightweight implementation of the Liberty Alliance standard, meaning that the fundamentals of the standard are utilized, without mandating full support of the standard from clients wishing to invoke the SSO functionality.

ACI Enterprise Security Services:SSO works in conjunction with other Web servers, applications, or indeed the ACI Enterprise Security Services:AF product, to ensure that, once authenticated within the ACI Enterprise Security Services “Circle of Trust”, a registered user can be considered signed on to other sites within that circle.

SOA Webcast Download
View the February 2006 webcast presentation showing how ESS is used to protect your SOA environment.
Webcast Download Page

Back to top