fhs
Volume 7, Number 22 -- June 5, 2007

Aldon Boosts Identity Tracking in ALM Tool

Published: June 5, 2007

by Alex Woodie

Aldon simultaneously strengthened and streamlined the authentication process for its change management tools last month with the introduction of a new identity access management (IAM) component. By automatically tracking which objects a given person can access and what they can do with them, the new IAM component should make life easier for Aldon's customers, as well as the auditors trying to gauge their compliance.

Change management software, by its very nature, is very process oriented. It's also generally at least somewhat aware of its users' identities. After all, no change management product that's correctly configured would allow a disgruntled former employee to check out the general ledger, delete the source code, and then promote the change into production. By compartmentalizing the application development process and strictly governing how pieces of applications can be moved about, change management software--or application lifecycle management (ALM) software as it's known these days--prevents this sort of thing from happening.

Of course, the devil is in the details, and there are multiple shades of gray. While Aldon's Lifecycle Manager offerings previously offered authentication and tracking, today's regulatory climate demands finer-grained user access monitoring and control capabilities. While Aldon's Lifecycle Manager products previously offered DEFCOM 4-level protections, the new identity segmentation and tracking capabilities lock things down to DEFCOM 2.

It's all about risk, says Modi Ronen, director of sales engineering at Aldon. "Controlling who has access to what has never been more critical from both a legal and operational standpoint," he says. "Our goal is to give organizations technology that makes access control automated, cost effective, and systematically reduces risk exposure."

With its new IAM component, Aldon is providing a framework to better manage the different roles people play in an enterprise and boosting its "separation of duty" functionality. The software enables managers to give one user different roles, with different access privileges for each role. These rules are then incorporated into a set of processes and hierarchies involving roles that the manager can set by group, by department, or at the individual level. Support for inherited roles in the new software allows managers to quickly propagate multiple layers of access privileges and control.

The new IAM component makes it easier to organize a confusing array of development teams, application releases, and supporting objects, Ronen says. Take, for example, a payroll application for which there are several releases of source code, and objects from different areas, including Java code and Word documents.

"IAM allows you to combine all three [developers, applications, and objects] together," he says. "It allows me to very easily with a GUI to say, 'Alex Woodie, under the payroll application has the authentication and control of a programmer. When he starts work on HR, you are defined as manager.' The system will automatically inherit you all the permissions for all the objects that you manage under the entity. This gives you an enormous amount of flexibility. [It even allows you to restrict access for] people offshore that you don't want to give access to certain parts of the application."

The new IAM component also simplifies the log-in process for users and their various roles. Instead of requiring users to remember different user names and passwords for the different development resources they need under their various roles, the IAM framework provides the authentication needed to grant access. Other ALM products offer unified sign-on capability, but they can't do it for multiple roles, says Helaine de Tomasi, senior director of marketing for Aldon.

The new software also allows external users to access company assets. Managers can explicitly assign privileges, such as read, write, and delete, to a user outside of a role or group structure, such as an external consultant. Aldon's IAM also provides full audit tracking through the metadata registry that all of Aldon's ALM products are based on.

While Aldon's i5/OS offering, called Lifecycle Manager System i Edition, or LMi, already offered some of the advanced capabilities found in its new IAM offering, Aldon's open systems offering, called Lifecycle Manager Enterprise, lacked them.

The new IAM component works with the most recent releases of both of Aldon's main products, including LMi 7.5 and Lifecycle Manager Enterprise 5.0. The new capability is built into these products, and is not available as a separate offering. For more information, visit www.aldon.com.

RELATED STORIES

Aldon Acquired by Marlin Equity Partners

Aldon Tackles Parallel Development Problems with LMi 7.5


                     Post this story to del.icio.us
               Post this story to Digg
    Post this story to Slashdot

Sponsored By
NUBRIDGES

Take Control of Securing Your Transactions

Take control of any secure FTP process with the most comprehensive FTP client/server solution available. truExchange FTP offers solid security, an abundance of encryption options and unmatched firewall navigation capabilities to give you total control of the way you exchange FTP transactions. truExchange FTP allows you to automate, control and manage FTP processes with any remote FTP server, as well as manage your internal FTP processes.

truExchange FTP's command-driven interface for FTP client scripting makes it possible to automate any FTP process through one script that includes user defined recovery within the session. The FTP Server can either replace, or run next to, the native iSeries server. The difference is that unlike the native server, truExchange FTP provides host-based control for file naming, formatting tracking, automatic application processing and features that allow you to run your FTP processes while allowing your iSeries to be as secure as possible.

truExchange FTP is perfect for connecting to EDI VANs, EDI trading partners, banks and other financial organizations, as well as healthcare related organizations who are mandating HIPAA compliancy. Also compliant with Sarbanes-Oxley requirements, the software offers add-on encryption bundles that keep transmitted information secure-critical for organizations trying to protect their own data, as well as guaranteeing security to customers and partners.

At nuBridges, security is a key component in the design and delivery of our solutions and services. Businesses that rely on digital exchanges depend on secure, reliable connections. That's why we take security so seriously. nuBridges' security software locks down information at every level in the pipeline.

Encryption Bundles
Encryption is a popular and effective method for providing security over the Internet. The encryption process alters data so only the intended recipient can read or use it. The recipient of the encrypted data must have the proper decryption key and program to decipher the data back to its original form. With the most encryption options in the market, our solutions secure businesses from losing valuable information and keeping it out of the hands of intruders. Our AS3 certification validates our approach to enhanced features such as built-in support for firewall navigation.

Do you need S/MIME (Secure/Multipurpose Internet Mail Extensions) to provide encryption and digital signatures for Internet mail messages? Perhaps SSL/TLS (Secure Sockets Layer/Transport Layer Security) provides the security encryption you want to secure message transmissions between two applications. The standard for a number of organizations, most notably financial services and healthcare is PGP (Pretty Good Privacy). And, SSH (Secure Shell) encrypts all traffic through secure tunnels between companies and their trading partners. Whatever encryption method suits your particular requirements, truExchange products offer the broadest range of options available.

About PGP and SSH
Written and ported specifically for the iSeries platform, truExchange PGP offers the same capabilities found in PGP Corporation's product line, but it has the look and feel that iSeries users expect. Many organizations adopt PGP as their encryption standard to secure confidential and critical transactions.

Offering customers the quickest, most cost-effective solution for implementing SSH on the iSeries platform, truExchange SSH fits directly into any environment. Our solution eliminates the need to understand encryption, easily addresses critical customer security mandates and provides immediate ROI.

Whether transacting with a financial services firm, complying with multiple mandates or connecting with your trading partners, nuBridges' FTP solution offers the one solution to fit your needs.

Contact nuBridges or visit our Web site.
Editor: Alex Woodie
Contributing Editors: Dan Burger, Joe Hertvik,
Shannon O'Donnell, Timothy Prickett Morgan
Publisher and Advertising Director: Jenny Thomas
Advertising Sales Representative: Kim Reed
Contact the Editors: To contact anyone on the IT Jungle Team
Go to our contacts page and send us a message.

Sponsored Links

New Generation Software:  Leading provider of iSeries BI and financial management software
COMMON:  Join us at the Annual 2008 conference, March 30 - April 3, in Nashville, Tennessee
LASERTEC USA:  Fully integrate MICR check printing with your existing application

IT Jungle Store Top Book Picks

The System i Pocket RPG & RPG IV Guide: List Price, $69.95
The iSeries Pocket Database Guide: List Price, $59.00
The iSeries Pocket Developers' Guide: List Price, $59.00
The iSeries Pocket SQL Guide: List Price, $59.00
The iSeries Pocket Query Guide: List Price, $49.00
The iSeries Pocket WebFacing Primer: List Price, $39.00
Migrating to WebSphere Express for iSeries: List Price, $49.00
iSeries Express Web Implementer's Guide: List Price, $59.00
Getting Started with WebSphere Development Studio for iSeries: List Price, $79.95
Getting Started With WebSphere Development Studio Client for iSeries: List Price, $89.00
Getting Started with WebSphere Express for iSeries: List Price, $49.00
WebFacing Application Design and Development Guide: List Price, $55.00
Can the AS/400 Survive IBM?: List Price, $49.00
The All-Everything Machine: List Price, $29.95
Chip Wars: List Price, $29.95
 
The Four Hundred
IBM's Rumored System i Power6 Server Plans

IBM Tries Online Discounts to Move Server, Storage Gear

The Market for Servers in Europe Is Hot

Mad Dog 21/21: Missing Inaction

The Linux Beacon
Virtualization, Consolidation Drive Server Sales in Q1

Novell's First Quarter Goes into the Red

InfiniBand Finds Its Place in the Data Center

The X Factor: Small Is Beautiful

Big Iron
Virtualization, Consolidation Drive Server Sales in Q1

Top Mainframe Stories From Around the Web

Chats, Webinars, Seminars, Shows, and Other Happenings

Four Hundred Guru
Send a Spool File from AS/400 with a Specific Subject Line and Message Body

Searching for Wildcard Characters

Admin Alert: i5 IPL Pre-Planning and Post-Planning Checklists

System i PTF Guide
May 19, 2007: Volume 9, Number 20

May 12, 2007: Volume 9, Number 19

May 5, 2007: Volume 9, Number 18

April 28, 2007: Volume 9, Number 17

April 21, 2007: Volume 9, Number 16

April 14, 2007: Volume 9, Number 15

April 7, 2007: Volume 9, Number 14

The Windows Observer
All Your IT Dollars Are Belong to Microsoft

Microsoft-Novell Deal Has Escape Clause

Virtualization, Consolidation Drive Server Sales in Q1

As I See It: Operating on Overload

The Unix Guardian
The Persistence of Unix

HP Pursues Telcos with New Entry NonStop Server

The Market for Servers in Europe Is Hot

As I See It: Operating on Overload

Four Hundred Monitor
Four Hundred Monitor's
Full iSeries Events Calendar

THIS ISSUE SPONSORED BY:

Midrange Alliance
Aldon
nuBridges
Computer Keyes
RJS Software Systems



TABLE OF CONTENTS
Maximum Availability Shakes Up Business Plan

SEA Delivers Web and Mobile Consoles for absMessage

Aldon Boosts Identity Tracking in ALM Tool

Quadrant Bolsters FastFax with Dynamic Line Allocation

News Briefs and Product Shorts:

HiT Software Delivers ADO.NET 2.0 Data Provider for DB2/400 . . . Lawson Launches QuickStep Program for Asset Management . . . DVD Retailer Integrates iSeries With Alpha for MMS, POS . . . NetManage Drops Source Code Licensing Fee for Librados Adapters . . . Stonesoft Prepares Security Tools for Disaster Scenarios . . . Supply Chain Prowess On Display at AMR . . .

Four Hundred Stuff

BACK ISSUES





 
Subscription Information:
You can unsubscribe, change your email address, or sign up for any of IT Jungle's free e-newsletters through our Web site at http://www.itjungle.com/sub/subscribe.html.

Copyright © 1996-2008 Guild Companies, Inc. All Rights Reserved.
Guild Companies, Inc., 50 Park Terrace East, Suite 8F, New York, NY 10034

Privacy Statement