CA"s eTrust IAM Toolkit secures applications

Computer Associates International has announced its eTrust Identity and Access Management (IAM) Toolkit, which enables developers to build more manageable identity-based security into their business applications. eTrust IAM Toolkit ensures standardized security procedures and centralized policy management, eliminating the problems associated with managing multiple application-level security "silos," such as security management, compliance processes, and auditing tasks. The toolkit can be used with a range of third-party provisioning and identity management tools, as well as with CA"s own eTrust Access Control, eTrust SiteMinder, eTrust Admin, and eTrust Security Command Center. More information about eTrust IAM Toolkit is available at http://ca.com/etrust/iam_toolkit.

Parasoft SOAPtest 4.0 offers security penetration testing

Parasoft has released Version 4.0 of its SOAPtest tool, which now integrates security penetration testing into the Web services testing suite. SOAPtest 4.0 embeds attack scenarios into automated and repeatable functional testing at the message level to detect Web services security vulnerabilities. The update features support for UDDI Registry, WS-Addressing, and WS-ReliableMessaging. SOAPtest 4.0 is available for Windows 2000, Windows XP, Linux, and Solaris priced starting at US$3,495.

Radware expands DefensePro"s intrusion prevention

Radware has added DefensePro 2.4 to its line of intelligent application switching solutions. Radware has integrated its SSL sniffing capabilities into DefensePro, which scans encrypted traffic and protects against SSL-based DoS/DDoS attacks. DefensePro 2.4 can handle up to 15,000 SSL transactions per second. It also offers enhanced dynamic bandwidth management features to block threats and ensure continuity and performance of all secure traffic. DefensePro 2.4 is available immediately priced starting at $25,000.

PortAuthority Technologies offers information leak prevention

PortAuthority Technologies (formerly Vidius), a developer of security software for controlling the unauthorized distribution of sensitive information, announced at Gartner IT Security Summit 2005 the availability of its PortAuthority for Internal Mail. PortAuthority for Internal Mail extends information leak prevention to include internal e-mail systems for Microsoft Exchange and Lotus Domino in addition to Web and outbound e-mail traffic. Scheduled for release in August, PortAuthority for Internal Mail protects against identity theft and offers new Web-based compliance reporting and customizable analytics capabilities. PortAuthority Technologies is also previewing at the show prototype functionality for preventing information leaks from print and fax communications.