Comparative analysis and design philosophy of next generation unified enterprise application security

Proceedings - IEEE 2005 International Conference on Emerging Technologies, ICET 2005

Volumn 2005, Issue , 2005, Pages 517-524

  Shaikh, Riaz A ^a   Rajput, Saeed ^b   Zaidi, S M H ^a   Sharif, Kashif ^a  

^a NATIONAL UNIVERSITY OF SCIENCES AND TECHNOLOGY   (Pakistan)

^b FLORIDA ATLANTIC UNIVERSITY   (United States)

Author keywords

Application security; Identity and access management; Unified architecture

Indexed keywords

COMPUTER ARCHITECTURE; COMPUTER CRIME; INFORMATION ANALYSIS; INFORMATION MANAGEMENT; SECURITY OF DATA;

APPLICATION SECURITY; ENTERPRISE APPLICATION SECURITY (EAS); IDENTITY AND ACCESS MANAGEMENT; UNIFIED ARCHITECTURE;

SECURITY SYSTEMS;

EID: 33845335178     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICET.2005.1558935     Document Type: Conference Paper

References (24)

1. Gramm-Leach-Bliley Act, "Standards for safeguarding customer information", Federal Trade Commission, May 23, 2002 http://www.ftc.gov/os/2002/05/67fr36585.pdf
2. th congress, Aug, 21, 1996 http://aspe.os.dhhs.gov/admnsimp/p1104191.html
3. th Congress, 2002 http://news.findlaw.com/hdocs/docs/gwbush/sarbanesoxley072302.pdf
4. John D. Woodward, Jr., Esq. and Gary Roethenbaugh, "Fact Sheet on the European Union Privacy Directive", http://www.dss.state.ct.us/digital/eupriv.html (Accessed: 9 March, 2005)
5. Lawrence A. Gordon, Martin P. Loeb, "Computer Security Issues and Trends", 9th annual CSI/FBI Computer Crime and Security Survey, Computer Security Institute, 2004
6. Greg Shipley, "Secure to the Core", Network computing magazine. 2003, pp. 34-43
7. Gilson Wilson, Ullas O. Tharakan, "Unified Security Framework", proceedings of the 1st international symposium on Information and communication technologies, Dublin, Ireland, 2003, pp. 500-505
8. Saeed Rajput, and Basil Hussain, "Application Defense: Next Generation of Unified Enterprise Security". International Workshop on Frontiers of Information, Islamabad, Pakistan, 2003
9. eTrust IAM Suite of Computer Associates Inc., http://www3.ca.com/Files/Brochures/etrust_iam_brochure_1.pdf
10. InnerGuard of Cerebit Inc., http://www.cerebit.com/ cerebit_innerguard.html
11. IAM Suite of Entrust Inc., http://www.entrust.com/
12. Access Master of Evidian Inc., http://www.evidian.com/security/index.htm
13. IAM Suite of IBM Tivoli Inc., http://www306.ibm.com/software/tivoli/
14. IAM Suite of Netegrity Inc., http://www.netegrity.com/products/products_overview.cfm
15. IAM Suite of Oblix Inc., http://www.oblix.com/
16. IAM Suite of SunOne Inc., http://www.sun.com/software/index.jsp?cat=Identity%20Management&tab= 3
17. Liberty Alliance Project-2002, www.projectliberty.org
18. OASIS SAML V2.0.Information http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security#saml v20 (Update: 16 Mar. 2005)
19. Netegrity white paper, "Universal Federation Architecture", April, 2004
20. Riaz A. Shaikh, Saeed Rajput, S.M.H. Zaidi, and Kashif Sharif, "Enterprise Wide Centralized Logging Mechanism for Application Level Intrusion Detection", International Conference on Security and Management (SAM'05), Las Vegas, USA, 20-23 Jun, 2005, pp. 144-148
21. The Common Intrusion Detection Framework (CIDF), www.isi.edu/gost/cidf/
22. H. Debar, D. Curry, "The Intrusion Detection Message Exchange Format draft-ietf-idwg-idmef-xml-12", IETF, Internet Draft, Jul. 8, 2004
23. Alec Yasinac, Robert F. Erbacher, Donald G. Marks, Mark M. Pollitt, Peter M. Sommer, "Computer Forensics Education", IEEE Security and Privacy, Vol. 1, No. 4, 2003, pp. 15-23
24. Data Monitor, White paper, "Single Sign On", Oct, 2004