Risk
11/15/2012
02:50 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

ForgeRock Launches Open Identity Stack To Protect Enterprise, Cloud, Social, And Mobile Applications

Open Identity Stack provides an all-in-one platform to deploy identity management

San Francisco, CA, Nov. 14, 2012 - ForgeRock Inc., the pioneer of open source Identity and Access Management (IAM), today announced availability of the first and only unified, 100% Open Source Stack to secure applications and services across enterprise, cloud, social and mobile environments. With over 250K downloads in less than 24 months, the ForgeRock Open Identity Stack is rapidly building a rich community of global companies working to deploy identity management infrastructure more easily and economically.

Identity Management is typically overly complex, with high barriers to adoption. The number of users, devices, and identities to manage continues to grow exponentially as enterprise security expands to include cloud, social, and mobile environments -- areas that legacy identity management solutions were not designed to protect.

The Open Identity Stack provides architects, developers, and users with an "all-in-one" platform to deploy identity management through simple, lightweight, modular, and highly scalable identity services. The developer-friendly open source platform abstracts away complexity, exposes simple identity services, ensures compliance and supports developers in easily extending identity and access management solutions beyond the security perimeter to the cloud.

Customers Appreciate Fair Share Pricing

ForgeRock levels the playing field with fair-share subscription offerings to support any Open Identity Stack deployment. Fortune 500 healthcare services and information technology company, McKesson Corporation (NYSE: MCK), is one of the hundreds of commercial customers that have purchased subscriptions with ForgeRock for unlimited support, indemnification, real-time updates, technical expertise, and ongoing R&D investment in the Open Identity Stack.

"ForgeRock's Open Identity Stack provides the next generation of identity management technology at a rational price," said Michael Wilson, VP and CISO at McKesson Corporation, a global health industry leader. "Our developers appreciate the inherent flexibility and scalability of this platform, which allows us to grow and build out over time."

Roger Holmes, Head of Software Engineering at BSkyB (LSE:SKY), a leading pay-TV and home communications provider in the UK & Ireland, chose ForgeRock "because of the straightforward implementation and the integrated platform. We needed a solution suited to our specific needs, but with the capacity to handle identity and access management across all our environments at Internet scale."

Comments on the News:

"Proprietary technologies can preclude innovation that is inherent in open interfaces. ForgeRock, open source and scalable, addresses the full potential of identity management in the new, often virtual and always dynamic enterprise," commented Scott McNealy, Chairman/Co-founder of Wayin, Co-founder of Curriki.org, Advisor/Investor in ForgeRock. "As an open source technology company, ForgeRock has created a robust and innovative community of vendors, developers and customers that ensures low barriers of entry and exit while providing trusted and reliable implementations of IDM."

"Open source democratizes identity management," said Lasse Andresen, ForgeRock founder and CEO. "It allows us to build the only integrated, all-in-one identity stack on the market, designed to work together by our developers and community, from the ground up. The beauty of open source is that you can use the parts you like--our platform works seamlessly, even paired with legacy technologies."

About ForgeRock:

ForgeRock is pioneering open source identity management through innovation, simplification, and openness for all identity services. Dedicated to democratizing Identity Management for everyone across enterprise, social, mobile, and the cloud, ForgeRock products support mission-critical operations with a fully open source platform. ForgeRock's Open Identity Stack powers solutions for thousands of the world's largest companies and government organizations. For more information and free downloads visit www.forgerock.com or follow ForgeRock on twitter at www.twitter.com/forgerock.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6306
Published: 2014-08-22
Unspecified vulnerability on IBM Power 7 Systems 740 before 740.70 01Ax740_121, 760 before 760.40 Ax760_078, and 770 before 770.30 01Ax770_062 allows local users to gain Service Processor privileges via unknown vectors.

CVE-2014-0232
Published: 2014-08-22
Multiple cross-site scripting (XSS) vulnerabilities in framework/common/webcommon/includes/messages.ftl in Apache OFBiz 11.04.01 before 11.04.05 and 12.04.01 before 12.04.04 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, which are not properly handled in a (1)...

CVE-2014-3525
Published: 2014-08-22
Unspecified vulnerability in Apache Traffic Server 4.2.1.1 and 5.x before 5.0.1 has unknown impact and attack vectors, possibly related to health checks.

CVE-2014-3563
Published: 2014-08-22
Multiple unspecified vulnerabilities in Salt (aka SaltStack) before 2014.1.10 allow local users to have an unspecified impact via vectors related to temporary file creation in (1) seed.py, (2) salt-ssh, or (3) salt-cloud.

CVE-2014-3594
Published: 2014-08-22
Cross-site scripting (XSS) vulnerability in the Host Aggregates interface in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-3 allows remote administrators to inject arbitrary web script or HTML via a new host aggregate name.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Three interviews on critical embedded systems and security, recorded at Black Hat 2014 in Las Vegas.