Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

9/21/2010
08:21 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Ping Identity Rolls Out PingFederate 6.3

Single sign-on offering provides increased interoperability with Microsoft environments

DENVER--(BUSINESS WIRE)--Ping Identity, the leader in Internet Identity Security, today announced the latest release of its flagship Internet Single Sign-On offering. PingFederate 6.3 allows businesses to extend visibility and control into Internet-based applications for security, audit reporting and compliance in the Cloud. In addition, PingFederate 6.3 provides increased interoperability with Microsoft environments to enhance and extend Internet Identity Security and seamless Single Sign-On access across local network resources and Cloud services.

“Our customers rely on the ArcSight platform to protect their enterprises from threats and risks, and they are increasingly linking their networks to the Cloud”

“PingFederate 6.3’s extended logging capabilities and enhanced interoperability with Microsoft responds to growing requirements for greater visibility in the Cloud and improved interoperability across platforms,” said Ping Identity CTO Patrick Harding. “Companies must be able to successfully mix existing infrastructure and applications with Internet-based services and platforms. And they must continue to deliver on security and compliance requirements even when access points cross into the Cloud. PingFederate 6.3 helps them do this.”

Visibility and Control in the Cloud via Integration with ArcSight

Working with the ArcSight Enterprise Threat and Risk Management (ETRM) Platform, PingFederate 6.3 extends critical cybersecurity and compliance monitoring capabilities to Cloud-based applications. PingFederate allows customers to send logging data into the ArcSight platform so that enterprise IT and security organizations can correlate usage reports and track when users are accessing unauthorized applications, violating role limitations, or creating undue business risk. ArcSight solutions can then produce complete activity reports that cross internal and Cloud-based systems, making audits faster, easier and less costly.

“Our customers rely on the ArcSight platform to protect their enterprises from threats and risks, and they are increasingly linking their networks to the Cloud,” said Rick Caccia, vice president of Product Marketing at ArcSight. “By linking the ArcSight ETRM Platform with PingFederate, customers can better understand what their users are doing, whether inside the enterprise or in the Cloud. The result is better visibility and protection.”

“Cloud services used to be beyond the reach of our logging and monitoring,” said Larry Sampas, a senior security engineer for the Corporate Executive Board, which is using ArcSight Logger and a beta version of PingFederate 6.3 in development testing. “Having PingFederate logs interoperate with ArcSight is great. Now I use a simple interface to see everyone that has logged into anything connected to Ping,” he said.

PingFederate 6.3 also provides the option to write audit and server logs to Oracle, Microsoft SQL Server and MySQL databases, allowing organizations to create compliance-related reports on who is accessing which Cloud-based applications, when and where.

Interoperability with Microsoft Claims Aware Development Environments

Existing Ping Identity customers who want to use PingFederate with Microsoft’s latest claims aware developer tools (Windows Identity Foundation and Visual Studio 2010) or Microsoft shops who want to extend their use of these tools across advanced federation use cases now have those options with PingFederate 6.3.

“Ping Identity and Microsoft are taking quantum leaps in terms of market foresight and in how they are leveraging partnerships,” said IDC Analyst Sally Hudson. “These efforts map perfectly to the hybrid Cloud models we see most organizations adopting. Users gain the benefits of Microsoft’s latest development tools without having to significantly alter plans for their efforts in the Cloud.”

Advancements in PingFederate 6.3 make it easily interoperable with Active Directory Federation Services 2.0 and Windows Identity Foundation regardless of use case. This allows Microsoft shops to leverage existing PingFederate deployments for use with claims aware applications, providing a centralized security token service for heterogeneous environments without compromising Internet Single Sign-On or user account management capabilities.

Certified Interoperable with Microsoft SharePoint 2010

PingFederate 6.3 has been successfully tested to interoperate with SharePoint 2010 using the WS-Federation protocol. As a result, organizations that are using SharePoint 2010 to collaborate with their business partners now have an easy way to SSO-enable them, eliminating the need to manage their partners’ identities. New capabilities in SharePoint 2010 make it “claims aware” and thus able to natively support SSO transactions. PingFederate enables the business partner, sending the user’s identity and attributes to the SharePoint-based partner portal and enabling secure Single Sign-On access.

How to Upgrade/How to Buy

PingFederate 6.3 is available now for download and is available to PingFederate customers with active maintenance agreements at no charge. Contact your designated account representative or [email protected] (+1.877.898.2905 or +1.303.468.2882) for more information.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Manchester United Suffers Cyberattack
Dark Reading Staff 11/23/2020
As 'Anywhere Work' Evolves, Security Will Be Key Challenge
Robert Lemos, Contributing Writer,  11/23/2020
Cloud Security Startup Lightspin Emerges From Stealth
Kelly Sheridan, Staff Editor, Dark Reading,  11/24/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-20934
PUBLISHED: 2020-11-28
An issue was discovered in the Linux kernel before 5.2.6. On NUMA systems, the Linux fair scheduler has a use-after-free in show_numa_stats() because NUMA fault statistics are inappropriately freed, aka CID-16d51a590a8c.
CVE-2020-29368
PUBLISHED: 2020-11-28
An issue was discovered in __split_huge_pmd in mm/huge_memory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check, aka CID-c444eb564fb1.
CVE-2020-29369
PUBLISHED: 2020-11-28
An issue was discovered in mm/mmap.c in the Linux kernel before 5.7.11. There is a race condition between certain expand functions (expand_downwards and expand_upwards) and page-table free operations from an munmap call, aka CID-246c320a8cfe.
CVE-2020-29370
PUBLISHED: 2020-11-28
An issue was discovered in kmem_cache_alloc_bulk in mm/slub.c in the Linux kernel before 5.5.11. The slowpath lacks the required TID increment, aka CID-fd4d9c7d0c71.
CVE-2020-29371
PUBLISHED: 2020-11-28
An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the Linux kernel before 5.8.4. Uninitialized memory leaks to userspace, aka CID-bcf85fcedfdd.