Mobile Access Control

Mobile Access Control

Mobile SSO using SAML and OAuth

MobileMobility has transformed the way businesses expose data and services to consumers and internal employees. Organizations need the ability to provide seamless user experience across multiple company applications and within the users’ session.

Single-Sign On (SSO) is one solution that helps create a seamless user experience but it’s critical to be able to control and sustain role mapping of the user’s roles and access.

Forum Sentry provides integrated identity & SSO technology for centralized identity consumption, role checking, authorization, identity attribute mapping, and many other out-of-the box features to enable centralized identity management, enforcement, and session management

 

Integrated STS Identity Server with SAML

Forum Sentry provides integrated STS functionality providing support for IdP-Initiated and SP-Initiated SSO with comprehensive support for SAML generation and consumption. Our STS supports SAML and WS-Trust profiles and as well as integrated session management, cloud and traditional in-house deployment.

 

Integrated OAuth Server

OAuth has become a popular means of authentication and SSO for the mobile industry. Forum Sentry has an embedded OAuth Server with features for token generation, token validation, and lifecycle management across standard industry-adopted OAuth standards. Forum Sentry also provides seamless OAuth Client and Server support with simple no-code deployment with point-and-click policy rules.

 

Works Seamlessly with existing MDM Solutions

Working in conjunction with MDM vendors, Forum Sentry provides integrated token consumption and access control to internal application infrastructure with the industry’s strongest and most advanced security.

  • DATASHEET

    Download the Forum Sentry Datasheet

    DOWNLOAD

    REQUEST DEMO

    Let us show you how an API gateway works

    SIGN UP

    WEBINAR

    Fundamentals of Enterprise API Security

    WATCH NOW

    WHITE PAPER

    Reducing Application Cost and Risk through Centralized API Security

    DOWNLOAD

  • Data moving between your company and the your partners, customers and cloud providers must be protected with military-grade security. As your enterprise increases its integration, the attack surface area increases along with the risk of corporate data leaks. Using Forum Sentry, your corporation can protect against emerging threats, deploy world-class data privacy, enforce data integrity, and ensure that every corporate transaction is accounted for.

    Threat Mitigation

    • XML/JSON Firewall
    • Web App Firewall
    • Rate-Based Rules
    • Size-Based Rules
    • Embedded AV Engine
    • Pattern Recognition
    • Intrusion Detection Prevention (IDP)
    • Data Leakage Prevention (DLP)

    Transaction Privacy

    • XML/JSON Encryption
    • WS-Security Encryption
    • Symmetric Encryption
    • RSA
    • DSA
    • ECC
    • TLS 1.2

    Transaction Integrity

    • XML/JSON Signatures
    • WS-Security Signatures
    • DSIG Verification
    • X.509 Authentication
    • XSD Schema Validation
    • XSD Tightening
    • JSON Validation
    • Timestamp Validation
    • HTML Form Validation

    PKI

    • X509
    • PKCS #1,7,8,12
    • OpenPGP
    • SSH
    • Key Import
    • Key Generation
    • CSR, Self-Sign
    • CRL, OCSP, XKMS, CDP
    • HSM Security World
    • OID Extraction
    Forum Sentry provides a flexible identity platform that lets your corporation rapidly utilize a variety of identity tokens. From social media and cloud-based OAuth tokens to hardened 2-Factor Authentication, Forum Sentry enables code free authentication, authorization, and access control capabilities for rapidly enabling secure data exchange.

    Message-Based Tokens

    • SAML
    • OAuth
    • OpenID Connect
    • JWT
    • DSIG
    • WS-Username
    • WS-Kerberos
    • WS-SAML
    • WS-X509

    Protocol-Based Credentials

    • HTTP Basic
    • HTTP Digest
    • HTTP Form Post
    • HTTP Cookie
    • SSL X.509 Client Auth
    • REST URI

    Access Control

    • Central Authorization
    • XACML
    • Database
    • IdP and SP-Initiated schemes
    • Native Identity Adapters
    • Intelligent Caching
    • Patented Cryptographic Acceleration

    Federation

    • Cookie Consumption
    • Cookie Generation
    • Cookie Tracking
    • IdP and SP-Initiated SSO Schemes
    • WS-Federation
    • SAML
    • OAuth
    • STS
    • Credential Persistence
    Forum Sentry API Gateway is designed to securely integrate clients and services, both modern and legacy, with comprehensive standards built in for optimal interoperability. Leveraging over 14 years in the industry, the Forum Sentry API Gateway inspects and analyzes transaction attributes in the request and response to enable policy-based enforcement. These attributes include: HTTP methods, protocol headers, message data, X.509, IdM attributes, and other dynamic attributes. This enables contextual decisions to be based on HTTP methods such as POST and GET, as well as contextual methods such as URIs, message data content, and any other attribute source. The integration features also enable API-based message enrichment where workflows, data transformation, and APIs can be extended via scripting and service aggregation capabilities.

    Standards

    • XML, SOAP
    • HTML, JSON
    • AS2, ebXML
    • SAML, WS-Federation
    • XML-Sec, WS-Sec
    • WSDL, XSD
    • WS-Trust, XACML
    • WS-Addressing
    • WS-Reliable Messaging
    • WS-Policy, UDDI
    • XPath
    • XSLT

    Data Mapping

    • SOAP-to-REST Conversion
    • Attribute Mapping
    • Protocol and Message Mapping
    • Identity Token Conversion
    • Data Aggregation
    • Node Encoding and Conversion
    • Transformation
    • Header, Body & Attribute Identification
    • X.509 Attribute Mapping
    • Database Mapping
    • IdM Mapping (LDAP, AD, etc.)
    • API & SOA Data Repository Integration
    • URI Mapping

    Protocols

    • HTTP, HTTPS
    • SSL / TLS
    • IBM MQ
    • Tibco EMS
    • JBOSS JMS
    • Oracle JMS
    • Sun JMS
    • Active MQ, Rabbit MQ
    • Solace JMS
    • AMQP
    • FTP, FTPS, SFTP
    • SMTP

    Monitoring

    Forum Sentry provides you with granular, real-time and accurate view into your corporations transactions with your customers and partners. With extensive logging, reporting and SLA enforcement capabilities, Forum Sentry can control traffic pattern between your application, cloud providers and users. With extensive throttling and alerting capabilities, Forum Sentry ensures that you are in direct and immediate control of your API traffic.

    Actions

    • API Traffic Reporting
    • Rates and Size Statistics
    • Latency and Throughput
    • Message Throttling and Shaping
    • Threshold Alerts
    • Enforcement time windows

    Logging

    • AI Machine Learning Log format
    • SYSLOG UDP/TCP/SSL
    • SNMP v3
    • JMX
    • SOAP Logging
    • Database Logging
    • Customized logging

    Transaction Accountability

    • Archiving
    • Logging
    • Reporting
    • Monitoring
    • SNMP
    • JMX
    • Custom Alerts

    Repositories

    • MySQL
    • IBM DB2
    • Oracle Database
    • Microsoft SQL Server

     

    Versatile technology form factors allow you to deploy Forum Sentry in any computing ecosystem, including on-premise, in the cloud, or within docker containers.

    License Types

    • Production
    • UAT
    • Test/Dev
    • Node

    Duration Types

    • Perpetual
    • Subscription

    Usage Variants

    • Elastic (Flex+)
    • Elastic (Flex)
    • Instance