Press Release

Xtradyne Releases New Version of IIOP Firewall Especially Suited to Telecoms

30 April 2004

BERLIN - Xtradyne Technologies, a leading vendor of application security gateways, today announced the general availability of version 2.5 of its IIOP Domain Boundary Controller (I-DBC) product. The I-DBC is an out-of-the-box solution for the secure traversal of existing firewall installations with the IIOP protocol, the underlying application protocol in CORBA and EJB access. The released version is particularly suited to the needs of telecommunications, especially concerning high-availability and the guarantee of uncompromising integrity of the protected services and systems.

The product solves an urgent problem in the telecoms industry, where many application systems, particularly for 3GPP/UMTS network management and for the provision of value-added services, are based on CORBA and IIOP. Very often, telecom operators cannot fully leverage their investment in application systems because the applications cannot be securely deployed across firewalls, due to the internal characteristics of CORBA and CORBA based systems (e.g., systems for UMTS network element management) such as dynamic port allocation and the incompatibility with network address translation (NAT).

The I-DBC is an appliance-type solution that allows enterprises to operate CORBA and EJB based applications securely across domain boundaries. It enables IIOP firewall traversal without any compromise on perimeter security and additionally provides a complete CORBA security/AAA solution, without impairing either performance or scalability of existing applications.

The new product version supports CORBA 3.0 and comes with an integrated CORBA Naming service. It allows role-based administration and security policy versioning and rollback. "With this release, we have extended the I-DBC's functions by features mainly required by our customers in the telecoms industry" says Marcus Wittig, product manager for the I-DBC at Xtradyne. "Bi-directional IIOP and the more powerful and more flexible security policy administration are particularly helpful in large network infrastructures, such as in telecom environments."

As a pure software solution, the I-DBC offers full deployment flexibility. The software is supported on the Solaris 8 and 9 platforms, and on Linux. Key features of the I-DBC include:

• Fully productized CORBA and EJB security without any programming,
• CORBA 3.0 support including bi-directional IIOP/GIOP,
• Powerful Policy Server for enterprise-level security management of arbitrarily many, even different, security gateways, e.g., also for XML Web Services
• Unified security management, and simple administration with powerful, remote graphical administration console,
• Differentiated administrator roles,
• Versioning of security policies & rollback functions for the security policies,
• Expressive policy models fine-grained, role-based access control (RBAC),
• Rich set of authentication mechanisms for users, servers, and intermediaries,
• Expressive message filters to enforce content-based access control and thus thwart application-level attacks, such as SQL injection,
• Transport security using SSL/TLS,
• Support for SSL accelerator cards,
• OCSP support for certificate revocation checks,
• Enterprise integration with LDAP support,
• Auditing, monitoring, and secure logging with SNMP, syslog, etc.
• Scalability and High-availability through cluster support,
• Extremely high performance and throughput

The Xtradyne WS-DBC 2.5 is generally available from April 26, 2004. A free evaluation copy can be ordered at Xtradyne's Web site. Please visit www.xtradyne.com or contact sales@xtradyne.com for more details.

About Xtradyne

Xtradyne's special expertise since its foundation in 1999 has been turn-key security solutions for applications relying on standard middleware, such as Web Services, J2EE, EJB, and CORBA. Using Xtradyne's cost-effective, high-performance runtime components, enterprises, mainly Global 2000 companies active in Finance, Telecommunications, Air Travel, and Automotive as well as government agencies can securely run business applications across corporate firewalls and also make them available via the Internet without security risks.