Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


02:58 PM
Dark Reading
Dark Reading
Products and Releases

CA Technologies Extends Content-Aware Identity And Access Management, Delivers Security Solution For Microsoft SharePoint

Company enhances CA SiteMinder, CA DataMinder

Click here for more articles.

SAN FRANCISCO, Feb. 27, 2012 /PRNewswire/ -- RSA Conference – CA Technologies (CA: NASDAQ) today announced advancements to further build-out its Content-Aware Identity and Access management (IAM) vision and deliver a security solution for Microsoft' SharePoint' to help improve information security, reduce risk and meet compliance mandates.

Traditional IAM stops at the point of access. CA Technologies Content-Aware IAM vision, a next-generation approach, takes IAM a step further to help control users, their access and how they handle information. This innovative approach helps organizations protect critical information from inappropriate use or disclosure.

"Balancing business productivity and enablement with security and data protection is one of the top priorities for the Chief Security Officer. This is made more difficult by today's collaborative environments that include extended teams from within and outside an organization," said Mike Denning, general manager, Security, CA Technologies. "For example, there are more than 65,000 Microsoft SharePoint customers, which equates to a lot of users accessing a lot of data. The challenge is to make sure the right users access the right data and handle it in the right way, which requires a layered security approach that includes Content-Aware Identity and Access Management from CA Technologies."

To help address these challenges, CA Technologies is adding capabilities and integrating new releases of CA SiteMinder' and CA DataMinder™ (formerly CA DLP), to deliver a Content-Aware security solution and help organizations protect the information stored, accessed and used in the Microsoft SharePoint environment. The CA SiteMinder and CA DataMinder updates, and resulting solution for SharePoint, will be available in March.

"Organizations are challenged with unknown Personally Identifiable Information (PII) that exists within documents residing across the enterprise," said Jeremy Britton, director, security & privacy services, Deloitte & Touche LLP. "The ability to identify and classify potential data risks in content, and control access based on the levels of risk, allows organizations to more effectively manage regulatory compliance and protection of sensitive data."

CA Technologies Solution for Microsoft SharePoint

As organizations expand their use of Microsoft SharePoint, they may face accelerated growth of siloed SharePoint instances, the proliferation of sensitive data across the SharePoint environment and increased compliance mandates.

CA DataMinder includes CA DataMinder™ Classification, which dynamically scans, locates and classifies sensitive content stored within Microsoft SharePoint, including intellectual property, financial information and PII such as social security numbers, credit card numbers and other employee relevant data. CA SiteMinder 12.5 will be enhanced to use the content classification information from CA DataMinder as input for access policies to more precisely determine whether a user should be granted access to a document. This combination will provide more fine-grained and better defined access control, helping to improve the security of data without hampering productivity.

CA Technologies security solution for Microsoft SharePoint will provide the following capabilities:

Convenient authentication through CA SiteMinder single sign-on, authentication, authorization and auditing; Content-aware access management with automatic data discovery, classification and content-aware access control; and Information lifecycle control for SharePoint data from creation, storage, access, distribution and disposal.

"We have supported many implementations for IAM systems – all improving security postures for those customers. A next-generation IAM approach that classifies and flags documents with sensitive content and then associates identity and access policies with that content will further enhance information protection," said Jason Wilcox, manager, Security Practice at YASH Technologies, a leading technologies and services outsourcing partner. "We are excited about the advancements that CA Technologies is making in the market, and look forward to working with our clients to advance the way they implement identity and access management."

CA Technologies first delivered capability for Content-Aware IAM by associating content and data policies with identities and roles managed by CA IdentityMinder™ (formerly CA Identity Manager). This helps to better control and protect information as users and groups change within organizations. By enabling CA SiteMinder to use content classification information, data security is strengthened by adding the access element.

In addition, as organizations begin to shift from IT rationalization and optimization to deliver business service innovation and growth, CA Technologies Content-Aware IAM technologies help enable and secure organizations to achieve business outcomes such as speed, cost and risk efficiencies and improved performance. The key is to strike the balance between security and business enablement.

The CA SiteMinder 12.5 release will include a number of additional core improvements including simplified management, support for Web 2.0 / Identity 2.0 technologies and enhanced federation management. Visit the CA Security Management blog for further details on the new releases of CA SiteMinder and CA DataMinder.

CA IAM Solutions Adopt the "Minder" Brand

Building on the strong brand equity of CA SiteMinder, CA Technologies has renamed the products and solutions in its security portfolio using the "Minder" naming convention. Visit http://bit.ly/wtzJCN to see the new names.

About CA Technologies

CA Technologies (NASDAQ: CA) is an IT management software and solutions company with expertise across all IT environments – from mainframe and distributed, to virtual and cloud. CA Technologies manages and secures IT environments and enables customers to deliver more flexible IT services. CA Technologies innovative products and services provide the insight and control essential for IT organizations to power business agility. The majority of the Global Fortune 500 relies on CA Technologies to manage evolving IT ecosystems. For additional information, visit CA Technologies at www.ca.com.

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2021-04-12
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 requests to user provided domains were not restricted to external IP addresses when transitional IPv6 addre...
PUBLISHED: 2021-04-12
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 Synapse is missing input validation of some parameters on the endpoints used to confirm third-party identif...
PUBLISHED: 2021-04-12
In Gradle before version 7.0, files created with open permissions in the system temporary directory can allow an attacker to access information downloaded by Gradle. Some builds could be vulnerable to a local information disclosure. Remote files accessed through TextResourceFactory are downloaded in...
PUBLISHED: 2021-04-12
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 Synapse is missing input validation of some parameters on the endpoints used to confirm third-party identif...
PUBLISHED: 2021-04-12
Advanced Authentication versions prior to 6.3 SP4 have a potential broken authentication due to improper session management issue.