IBM Tivoli Security Policy Manager
Strengthen access control, facilitate compliance and support operational governance across the enterprise
IBM Tivoli® Security Policy Manager offers a comprehensive solution for addressing these security challenges, providing unified SOA security policy management and application entitlements management across registries and applications. Tivoli Security Policy Manager enables full policy lifecycle management—authoring, transforming, distribution, enforcement and monitoring. This adaptable tool provides the ability to import application roles and integrate with existing identity systems, and leverages standards like XACML, WS-Trust, WS-Policy and others to offer centralized control, making it easier to address tightening or new compliance requirements. Tivoli Security Policy Manager offers security as a service, decoupling the native authentication or authorization capabilities of an application to improve security and reduce the complexity of the IT infra-structure. And its OSGi-based plug-in architecture not only works seamlessly with existing security but also allows for extending the product easily in multiple areas.
Tivoli Security Policy Manager is offered in two package options to address the client’s IT and application-specific requirements. They include:
· Tivoli Security Policy Manager for Application Entitlements
· Tivoli Security Policy Manager for SOA.
Tivoli Security Policy Manager for Application Entitlements provides application owners and administrators the ability to externalize the security from the application logic and simplify the management of complex authorization policies for new and existing applications, including customized applications. It offers organizations the ability to respond quickly to business changes through centralized application roles, entitlements and data-level access control, and helps improve compliance and security management with roles, rules and attributes-based access control. This package includes the policy manager, run-time security services and the WebSphere policy enforcement point.
Tivoli Security Policy Manager for SOA enables enterprise architects and security operations to centrally manage and enforce security policies for Web services resources across multiple policy enforcement points, including WebSphere DataPower SOA appliances. It helps to reduce the manual, inconsistent and costly administration of security policies at each policy enforcement point and enables operational governance with the ability to delegate and audit all changes to policies. This package includes the policy manager with the out-of-box integration with WebSphere Services Registry and Repository and WebSphere DataPower SOA appliances.
