A SOA (Service orientated Architecture) infrastructure mostly connects a various number of services to complex business processes. The interconnection with numerous instances comes along with mass data. A basic requirement thus is reliable protection of the services and the communication between recipient and provider.
The secRT provides a various number of security services with a matched infrastructure on board. It brings, e. g., a complete PKI (Public Key Infrastructure) Implementation, also a certificate rollout can be conducted, at the same time. It offers, e.g., the possibility to provide a signature service for Web Services centrally in the company´s infrastructure. Every single local instance of the secRT acts autonomously as a so called Policy Enforcement Point (PEP). There is a local check in the individual instances, of which rule has to be applied, thus which security action has to be taken.
In parallel to business-processes modeling, it is possible to include an additional security-specific modeling platform fit for SOA. Thereby, the security mechanisms are entirely decoupled from the Business Logic. The solution´s best advantage is that, e. g., a cryptographic operation may be exchanged within a few minutes throughout the whole organization without having to change any code line in the application.
The secRT itself is constructed completely according to SOA principles; it is based on open standards like Java, XML and Web Services, which makes it capable of being integrated in all conceivable system environments. Through the public access as Open Source software, it is a transparent solution, which adapts to individual requirements.
Free download and further information on the secRT on our website: http://secrt.corisecio.com