ObjectSecurity, the leader for application security policy automation today announced a new major release of their OpenPMF product. OpenPMF helps develop, operate and maintain secure applications. It makes application security proactive, manageable, intuitive, cheaper, and less risky.
With OpenPMF, you can manage application security policies (esp. for access control and auditing):
- Configure intuitive business security requirements
- Generate matching technical security policies automatically
- Enforce technical security policies transparently
- Audit technical security policies transparently
- Update technical security policies automatically
OpenPMF is proven, award-winning, patent-pending, and standards-based, with deployments including US Navy & Air Force & a European air traffic control project. Unlike any other application security policy management product in the market, OpenPMF offers unique automatic policy generation and update from intuitive business security requirements (even for agile SOA, Cloud and virtualization application platforms). OpenPMF also supports more platforms than any other product in the market.
The new version 3.0 extends OpenPMF 2.0 by a number of exciting features:
- Cloud Computing Support – OpenPMF now supports policy automation, enforcement and monitoring + reporting for Cloud Platform as a Service (PaaS) applications. This security feature is available for Intalio’s private Cloud, and can be ported to other Cloud platforms by ObjectSecurity upon request.
- BPMN Support – OpenPMF now supports automatic policy generation for business process driven services orchestration (BPMN SOA) using model-driven security. This allows the expression of stateful workflow sequence policies. The BPMN feature is available in Eclipse for Intalio BPMS, and can be ported to other BPM tools by ObjectSecurity upon request.
- XACML Export Support – OpenPMF supports authorization policy rules export in the OASIS XACML standard format. This feature enables the integration of OpenPMF policy management with third party policy enforcement points that support the XACML standard.