• Products and Services
• Products & Services Home
• EnterSpace Technology
• EnterSpace
  Security Suite
• Overview
• Background
• Specific Benefits
• Advanced Possibilities
• EnterSpace
  Personalization Suite
• EnterSpace
  Business Process Automation Suite
• Professional Services

EnterSpace Security Suite™ -
Background

Background information regarding the EnterSpace Security Suite (ESS) for Contextual Entitlement and Privilege Management:

Historical Background

Securing digital information and critical resources on a need-to-know/ need-to-access basis within a large enterprise is very challenging.

To date, information security has largely concentrated on authentication and securing the physical infrastructure, thus the great interest in biometrics, cryptographic techniques and Identity Management. These are large problems in and of themselves and many companies are devoted exclusively to providing solutions in these areas.

Contextual Security Service within an SOA - The ESS was designed to solve problems that have existed within information security since the dawn of computing, but only now are technologically possible to be addressed.

Key questions and issues we focus on include:

• How do I derive more business value from Identity Management?
• Given the drive towards Web Services and SOAs, how can authentication support and authorization be enabled as an addressable network service?
• Once a user is authenticated within the network, what are they allowed to see?
• How can access control policies be kept up to date with changing requirements and volatile user populations?
• Given a vast number of resources that need to be secured; how can effective security policies be implemented, managed and maintained?
• How can large enterprises share sensitive data within their organization or with other organizations on a need-to-know basis?

Jericho Systems’ Rules-Based Security Tool Enables a New Security Methodology… Attribute Based Access Control — The new functionality enabled by the ESS involves a profound paradigm shift that extends Role Based Access Control (RBAC) and User Based Access Control (UBAC).

With the ESS, you can focus not upon who should have access to information; but rather, why should users, at this given instant of time, have access to a specific secured resource. We have called this new access control Attribute Based Access Control (ABAC). ABAC also enables Policy Based Access Control (PBAC) and Risk Adaptable Access Control (RADAC).