Author: admini

CA HIPS monitors both incoming and outgoing traffic and enables centralized management of access control policies.

“Today’s sophisticated threats require a multi-faceted defense that incorporates proactive threat detection and whitelisting, working hand-in-hand with existing antivirus and anti-spyware technologies,” said Robin Bloor, partner, Hurwitz and Associates.

CA HIPS uniquely facilitates the definition and implementation of security policies by allowing administrators to create policies based on user behavior and existing examples. This “learn-by-example” approach eliminates much of the time and effort typically required for administrators to define policies for specific roles, applications and/or resources.

“IT organizations are already dealing with twice as many threats as they did even just a year ago — and those threats are getting more complex and sophisticated all the time,” said Sam Curry, vice president, CA security management.

“CA HIPS enables us to provide our customers with an additional layer of security that complements CA’s anti-spyware and antivirus solutions which have already proven to be so effective for them,” said Jimmy Barter, vice president of business development, Net-Tek Networking Solutions, a total solutions provider who resells CA’s threat management products.

http://ccbn.compuserve.com/releasetext.asp?ticker=ca&coid=83100&client=compuserve&release=959159

OpenID is a decentralized digital identity system, in which any user’s online identity is given by URI (define), such as a Web address, and can be verified by any server running the protocol. Web sites that support OpenID are fashioned in such a way that Internet users don’t need to create and manage a new account for every site before being granted access; users need only to authenticate with an identity provider that supports OpenID.

Gates and Microsoft Chief Research and Strategy Officer Craig Mundie also outlined Microsoft’s conceptual approach to supporting Trustworthy Computing. Mundie said policy will be the key to managing computer access, rather than the gear connecting to the network. This includes adapting to the evolution of networks, protection and identity.

Gates also said Microsoft is a strong supporter of IPSec (define) and IPv6 (define). IPsec calls for Internet Protocol (IP) communications to be protected by authenticating or encrypting each IP packet in a data stream.

Microsoft announced Identity Lifecycle Manager (ILM) 2007, which adds support for managing strong credentials such as certificates and smart cards over, as the name suggests, the life cycle of a user identity. The company will rev ILM “2” in late 2008.

Microsoft also announced the public beta of the new Forefront Server Security Management Console, a Web-based management application that does on site or remote administration of Microsoft messaging and collaboration security software.

Finally, the company said it is supporting Extended Validation (EV) SSL Certificates in Internet Explorer 7. When a user visits a site with a valid EV Certificate, Internet Explorer 7 will alert the user to the identity information by turning the background of the address bar green and displaying identity information.

http://www.internetnews.com/security/article.php/3658246

“To thrive in today’s fast-paced interconnected world, businesses need to balance secure access with protecting applications and network infrastructure,” said Margaret Arakawa, senior director of the Security and Access Product Group at Microsoft. “Building on our line-of-edge security and access products — ISA Server and IAG — we will continue to bring innovative and flexible solutions to our customers, and build on our vision to provide secure, seamless connections in today’s always-on, always-connected world.”

http://www.it-observer.com/news/7042/microsoft_launches_new_ssl_vpn_solution/