XML Networking Gateway The SecureSpan™ XML Networking Gateway combines the capabilities of the SecureSpan XML Accelerator, XML Data Screen and XML Firewall and VPN with advanced message routing, mediation, virtualization and SLA features to address generalized Application Oriented Networking (AON) problems. Deployed either as a hardware accelerated appliance or gateway software, the SecureSpan XML Networking Gateway provides SOA and integration architects flexible policy based control for scalably mediating service interactions across message oriented middlewares, protocols, service versions and XML data formats. Through integration with leading registry products, the SecureSpan Networking Gateway can be also be implemented as a high performance runtime policy enforcement point for SOA Governance initiatives.  For scenarios requiring advanced SLA capabilities, the XML SecureSpan Networking Gateway can be deployed in conjunction with SOA and Application Performance Management products to enforce routing and throughput policies based on requestor identity, Class of Service, message parameter, service availability or service performance. Customized routing fabrics can also be defined in the SecureSpan XML Networking Gateway based on a target address, requestor identity, SLA performance, transport type, message content or a policy defined condition. For B2B and wide area applications, routing decisions between XML Networking Gateway intermediaries can also be defined across security boundaries.
The SecureSpan XML Networking Gateway is available as a linearly scalable, high performance 64-bit, multi-processor, 1U appliance with onboard XML acceleration optional and FIPS 140-2 SSL/crypto accelerator with HSM, as Gateway software for Linux and Solaris server platforms, and as a soft appliance supporting a broad range of host operating systems. The SecureSpan XML Networking Gateways also supports device virtualization and the SecureSpan Custom Policy Assertion SDK. Example Deployment Pages: Problems Addressed: - Application Oriented Networking and XML routing
- Service virtualization
- Centralized SLA enforcement
- Transport and protocol mediation
- Runtime enforcement of SOA Governance policies
Innovations: - First Application Oriented Networking device to combine 64-bit architecture with onboard XML and FIPS 140-2 crypto acceleration
- Configurable virtualization as multiple logical Gateways for simplified development across groups
- Can be deployed counterposed in B2B wide area scenarios
- Supports policy level integration with leading SOA registry and governance products
- Automatic clustering support for added scalability and high availability
- Custom Policy Assertion SDK for custom policy development
Key Features: Service Level Agreement (SLA) - Throttling / rate limiting controls provides ability to support service over subscription with per-service throttling of excess messages
- Service availability features includes support for strict failover, round robin, best effort and latency-based routing
- Full support for Class of Service based message processing and routing based on identity, message content, time of day, etc
Service Mediation and Virtualization Features - Transport mediation between HTTP, HTTPS, MQS, JMS and email
- Smart WSDL generation for non-SOAP services
- WSDL remapping and service virtualization based on requestor identities
- Authorization controls for access to specific service operations
Policy Flexibility - Support for XML, SOAP, POX, AJAX, REST and other XML-based services
- Configuration wizards simplify policy creation and activation
- Support for policy branching based on any message content or logic operation
- Rollback to previous policy versions and reuse of user defined policy fragments
- Single policy can support both in-line and co-processor deployments
- Policies can be applied to request-only, response-only or both request and response messages
- Policy level integration with leading SOA Governance registries
- Custom Assertion SDK for user-defined extentions to policy language
Administration Options - GUI-based SecureSpan Manager deployed as either stand alone application (Windows / Linux) or browser-based (Internet Explorer / Firefox)
- Centralized cluster management and configuration with delegated administration
- Gateway virtualization supports multiple, independently logical managed Gateways on one appliance
- Drag and drop policy-based policy configuration
- Intelligent, real-time validation and testing of policies
- Secure configuration backup and policy migration between environments
- Logging and audit trapping of violations and system/user defined events via SNMP and SMTP
- Support for external logging sinks
- Dashboard for graphical, real-time monitoring of traffic profiles and security violations
Supported Standards and Specifications- XML 1.0, SOAP 1.1, REST, AJAX, XPath 1.0, XSLT 1.0, WSDL 1.1, XML Schema, LDAP 3.0, SAML 1.1/2.0, PKCS #10, X.509 v3 Certificates, FIPS 140-2, Kerberos, W3C XML Signature 1.0, W3C XML Encryption 1.0, SSL/TLS 1.1 / 3.0, SNMP, SMTP, HTTP/HTTPS, POP3, IMAP4, JMS 1.0, MQ Series, Tibco EMS 4.0, WS-Security 1.0, WS-Addressing, WS-Trust 1.0, WS-Federation, WS-SecureConversation, WS-MetadataExchange, WS-Policy, WS-SecurityPolicy, WS-PolicyAttachment, WS-SecureExchange, WSIL, WS-I, WS-I BSP, UDDI 3.0
Form Factor- 1U rack mount appliance, 64-bit multiprocessor platform with XML acceleration ASIC, optional SSL/crypto acceleration with HSM, four GE/FE NICS and dual PSUs
- Gateway software for Red Hat and SUSE Linux and Solaris platforms*
- Soft appliance supporting a broad range of host operating systems
*Note: Some features available in appliance version only |
