Security News Bites

Oracle and Sun Directory Services

Mark Wilcox briefly focuses on what the Oracle-Sun merger means for directory services. In summary, he states, the Oracle Virtual Directory will be the virtual directory, both Oracle Internet Directory and Sun Directory Server Enterprise Edition will continue to be offered, and OpenDS will remain an open-source project. He also cited Nishant Kaushik's blog as a resource for a quick rundown on the Oracle+Sun Identity Management (IDM) strategy announcements made during the Jan. 27 product event held by Oracle.

More on Oracle's Sun IDM Strategy

The Jan. 27 webcast on IDM (runs 18 minutes) with Hasan Rizvi, senior vice president, Oracle Fusion Middleware, is available for viewing.

Sebastien Stormacq also offers a summary of Oracle's proposed technologies strategy and integration, offering links to the products as well as briefs on LDAP, authorization and access management, provisioning, and compliance. He notes that Oracle will extend OpenSSO support until 2014 (for premium support) and 2017 (for extended support).

“Identity Management: Securing Information in the HIPAA Environment”

This talk by Mark Dixon illustrates major components required in a Patient Consent Management system. Dixon outlines the key components as identity and role repository, consent registry, master patient index, federated data access, and data access services. Dixon has posted his slide deck for download.

ZFS Crypto Project

Darren Moffat, senior staff engineer in Solaris Security, discusses the ZFS Crypto Project - ZFS on disk encryption support -in a 9:37 minute video with Cindy Swearingen of the ZFS Team.

OpenSSO REST Interfaces for Entitlements Service

The OpenSSO Entitlements Service provides fine grained access control. A four part blog series on the OpenSSO REST interfaces for the Entitlements Service authored by DocTeger covers the following topics in respect to using REST:

DPS Coherence Plug-in

The DPS Coherence plug-in provides users the ability to filter out attributes so they don't make it in the cache (e.g. userPassword); filter out entries not desired in the cache (e.g. administration hits); set a time for entries to remain in cache; list regular expressions for the Bind DN (the identity) that are allowed cache access; and include or exclude unauthenticated clients to access the cache. The Directory Services blog discusses the features along with an example configuration.

Drupal with AMP Stack AMI build on Hardened Security OpenSolaris 2008.11 AMI

In early fall, Sun announced the release of Drupal AMI with AMP Stack based on Hardened OpenSolaris 2008.11 AMI on Amazon EC2's cloud computing service. Divyen Patel provides details, while Prateek Parekh elaborated days later that it was also available in the European region. [...read more...]

Keywords:

fullsource

Current

Profile

Archive

Blog

Generate newsletter

Other articles in the Security section of Volume 144, Issue 3:

Security News Bites (this article)

See all archived articles in the Security section.

Top 10 Most Popular Articles in Current Issue (Vol 168, Issue 1)
Sun ZFS Storage Appliances Earn Highest Ratings for Enterprise and Midrange NAS Systems SPARC T4 Server Momentum Expands Demand for SPARC System Oracle Sun Ray 3 Series Clients Capture 2011 Good Design Award SPARC T4 Servers Find Favor with Telecommunications Service Providers Oracle Ships Over 1 Exabyte of Media for StorageTek T10000C Tape Drives	How to Manage the ZFS Storage Appliance with JavaScript: Three Approaches Exactly What Is Big Data? Building a Secure Cloud with Identity Management Oracle Secure Global Desktop Allows Simplified, Anywhere, Access to Applications Migrating from SUSE Linux to Oracle Linux 5.5