Information Assurance and Security

PrismTech′s software underpins some of the most demanding mission-critical and business-critical applications in defense, telecoms and finance. From combat management systems to telecom network management to banking IT infrastructure, PrismTech′s customers demand secure and trusted software solutions. As such, PrismTech is at the forefront of software security assurance initiatives.

Software Security Assurance

PrismTech is pursuing Common Criteria evaluation (EAL 4+) for most of its middleware products. PrismTech is also well versed in the application of safety-critical certifications (e.g. D0178B) to dynamic middleware (e.g. ORBs). Quality assurance for highest security and safety requirements is given high priority: PrismTech regularly reviews and revises its internal processes to comply with evolving market requirements and routinely passes customer audits. Furthermore, PrismTech is currently in the process of gaining a Special Security Agreement (SSA) with the US DoD's Defense Security Service (DSS) for its US operations, thus formalizing its capability to provide 'secret-level' software and services directly to highly-classified DoD programs.

We give the contribution to the development of necessary new technologies and standards for security and safety a high priority. PrismTech is a member of the Open Group′s RTES Group working to evolve specifications for Multiple Independent Levels of Security (MILS) in real-time and embedded systems. PrismTech′s experts can answer all your questions on secure and trusted software infrastructure.

Xtradyne Security Products & Solutions

PrismTech provides enterprises with a complete suite of middleware security products, the Xtradyne application security product line, including middleware security gateways, server-side security interceptors, and security policy servers.

The fundamental concept for Xtradyne application security is Domain Boundary Control. Each network or sub-network with application resources to be protected, e.g. a group of EJB application servers, can easily be turned into a protected domain by putting an Xtradyne Domain Boundary Controller (DBC) as an application security gateway at the network entrance. Each DBC instance is controlled by an Xtradyne Policy Server. One Policy Server can control as many DBCs as wanted, and can thus enforce a centralized enterprise security policy at any point in the enterprise infrastructure. Xtradyne Domain Boundary Controllers are provided for most middleware standards, such as CORBA, RMI/IIOP, XML/SOAP Web Services, and RMI/SOAP.

Using PrismTech's Xtradyne product suite, application security can be enforced at the firewall or within the internal network. PrismTech's Domain Boundary Controller products enable large and medium-size companies to quickly and easily extend their internal systems to customers, suppliers and partners without compromising on security, high availability, or performance. Our security solution enables extremely easy, seamless integration and security management across middleware product and technology boundaries, thus saving development costs and speeding time to market.

All our Domain Boundary Controller products are fully compliant to all relevant industry standards, such as OASIS, OMG and W3C, and interoperate with all standards compliant products of other middleware vendors.

• Web Services Security - Xtradyne WS-DBC

• CORBA EJB Security - Xtrayne I-DBC

• Security Management - Xtradyne Security Policy Server

• Security Professional Services

• Security Training & Education