Featured

Establishing Identity Federation: Combining Identity With Data Security

Identity Federation – Internal and External Services, Internal and External Users Establishing an identity and trust solution among computing systems in a network ecosystem is not new to information technology, what is new is the multiple factors enterprises must consider … Read MoreRead More

Implementing Identity and Access Control? Don’t Forget the Data!

Last weeks European Identity and Cloud conference (EIC) hosted by KuppingerCole in Munich, Germany, proved to be the start of a week full of conversations focusing on the questions and challenges surrounding identity. Conversations around terms and phrase such as … Read MoreRead More

Forum Systems London API Summit

Forum Systems London API Summit Best Practices in API Security Management Date: Thursday, February 11th, 2016 Time: 09:30 AM – 5:00 PM Location: The Grange St. Paul’s Hotel Dinner: Bread Street Kitchen Cost: The event and dinner are free … Read More

Content-Based Access Control: Three Areas of Consideration

In an API economy, content-based access control (CBAC) grants or denies a customers request based on the content that is sent. In most cases content-based access control is used along with identity processing, but it can be used on it’s … Read MoreRead More

2015 Trends and Predictions

December is upon us. While most of the world celebrates the holiday season, IT professionals like you are largely working around the clock to take care of critical updates to your IT infrastructure. If you find yourself with some downtime … Read MoreRead More

Tags:
Heartbleed

Forum Systems CEO featured in CIO Article on Heartbleed

Mamoon Yunus, Forum Systems CEO, was recently featured in Why Open Source Software Isn’t as Secure as You Think by Paul Rubens. The article dives into the potential issues with using open source code to manage secure information traffic, and talks … Read MoreRead More

Tags: ,
Heartbleed

Six New OpenSSL Security Vulnerabilities Discovered Since Heartbleed

In a recent security advisory from June 5th, 2014, six new vulnerabilities were disclosed on OpenSSL’s website. It’s important that these news OpenSSL flaws are being discovered quickly and getting fixed. But these new discoveries are indicative of other potential … Read MoreRead More

Tags: ,
Heartbleed

OpenSSL is Fṓṝked

The flensing began rather quickly with the OpenBSD team cleaning up 90,000 lines of code within a week of Heartbleed.  OpenSSL then got royally fṓṝked by OpenBSD and LibreSSL was born.  The divergence between OpenSSL and LibreSSL continues while OpenSSL … Read MoreRead More

Tags: ,
Heartbleed

Heartbleed exposes privates

This is as serious as it gets. Heartbleed exposes your corporate private keys. Your crown jewels, your keys to the castle….well you get the idea. Your corporate privates are indeed exposed, they may not have been stolen yet, but they are unequivocally exposed through Heartbleed . It took researches less than 3 hours to extract private keys from a server as a result of a challenge issued by CloudFare. … Read More

Tags: ,

Welcome to the Forum Systems Blog

Welcome to the Forum Systems corporate Blog! This blog will discuss and examine best practices, industry trends and challenges that organizations face in the XML, SOA, API and mobile gateway security. We will share tutorials, API and SOA how-to’s and specific use cases. Read More