In a decentralized, decoupled, distributed world, where each (micro) service fends for itself and modules are pieced together to deliver leaner, laser-focused functionality, there is an ever greater need for a “glue” to hold everything together. What can we expect? That everything would
DevOps, Information Dissemination, Safeguarding Sensitive Data and Data Monitoring Dominate Federal Security Practices in 2018 Secure data sharing remains a challenge among intelligence agencies and many other federal departments when dealing with highly sensitive information. Data sharing across
Is your business or agency preparing to migrate to cloud technologies in 2018? Or have you already adopted the cloud and are looking for ways to enhance cloud security and protect your company or agency resources? As organizations trend towards cloud environments, new challenges and opportunities
Enterprise security is always evolving, not by choice, but because organizations are constantly facing new security threats. As 2018 fast approaches, let’s take a quick look back at how enterprise security evolved in 2017 and what we expect to see shake things up in 2018. 2017: A Year of
Artech House has just published a book on Attribute Based Access Control, authored by Vincent Hu, David Ferraiolo, Ramaswamy Chandramouli and Richard Kuhn. These names will be familiar to anyone that has followed the history of research in ABAC or other models of access control. For our younger
Introduction Tableau offers Business Intelligence (BI) software that is great for generating meaningful graphs and visualizations of data. The software can query many different sources for data and aggregate these into illustrations that tell the story behind the data. When using BI tools,
As a Sales Engineer, it’s not uncommon to meet with a customer - or a prospective customer - who, along with securing APIs, microservices, and a web portal, would also like to secure some commercial off-the-shelf application (“COTS application” from here on). And why not? They see themselves
When it comes to securing access to services and data, we see many different use cases and, with that, the enforcement of authorization rules at different layers in the IT stack. This spans all the way from the Web/Presentation tier down to the data tier as illustrated in Figure 1. Enforcing
It’s hard to believe, but it’s already been 10 years since I had the honor to host the first ever XACML interoperability demonstration at Burton Group’s Catalyst conference in June of 2007. We had a long tradition of hosting interoperability demonstrations, but they were typically associated
Splunk is a Security Information and Event Management (SIEM) tool that can be used to aggregate and analyze security logs. Axiomatics Policy Server (APS) can be configured to generate audit logs that monitor who logs in to the Axiomatics Services Manager (ASM) and who does what within the ASM.
