White paper - Vordel 5




Application Level Networking

Vordel XML Gateway provides governance, acceleration, integration, and security for SOA and Cloud Computing. It is available as an appliance, as software, in the cloud or as a virtual appliance.

View Product in Action

The Camtasia Studio video content presented here requires a more recent version of the Adobe Flash Player. If you are you using a browser with JavaScript disabled please enable it now. Otherwise, please update your version of the free Flash Player by downloading here.
Learn why Information Week rates Vordel XML Gateway as the best product in its class.

Download Vordel XML Gateway to see how easy it is to implement governance for your organization.

Product Datasheet

Integration Vordel XML Gateway links together products from CA, Oracle, IBM , TIBCO, Sun and Microsoft. Don’t waste time coding your own solution – use a proven dependable highly extensible product which can be configured in minutes.

Acceleration Vordel XML Gateway accelerates system performance using the Vordel XML Acceleration Engine. Patent protected XML Processing technology crunches through XML while selective caching of message and application content reduces system overhead. Applications run faster and are less susceptible to traffic spikes.

Governance Vordel XML Gateway applies policy to services controlling usage and availability and enabling organizations to deploy services in confidence. Vordel XML Gateway provides Access Control, Traffic Control and Service Level Enforcement. Transactions and configuration changes are stored in secured non-repudiable logs to aid compliance.

Security Vordel XML Gateway protects your SOA against malicious traffic and controls access to your services. It is built from the ground up to provide a security layer to Web Services. Don’t leave your valuable services open to attack!

Features & Benefits

Processing Offload for Application Acceleration
  • Offload the heavy-lifting of XML from application servers and onto the network. This frees up resources on application servers and allows applications to run faster.
Vordel XML Gateway incorporates the core VXA acceleration engine
  • Ensure XML processing does not become bottleneck for speedy throughput of XML traffic
  • Permit key processor-intensive tasks to be taken off application servers and run on XML gateway
  • Overcome any latency issues with optimized throughput of XML traffic
Cryptographic acceleration hardware is also embedded in the device
  • Optimize acceleration of SSL processing and provide for acceleration of XML encryption

Ease of Deployment

Pre-hardened with no need for detailed software configuration
  • Easy to deploy in a fast and efficient manner
No need to configure Lines of XSLT or XML code
  • Quick implementation of policies and get protection for Web Services up and running fast
Staging with software, production with hardware
  • Reduce and contain software development and maintenance costs. Remove the need for hard-coding every time security policies are created or updated
Import policies as XML files
  • Minimize time for replication of policies across multiple devices
  • Ease transition from staging to production system
Generate certificates and private keys on-board
  • Accelerate time to deployment
Tool to generate XML Schema Definition (XSD) files from sample XML messages.
  • State-of-the-art Policy Management tool
  • Improves IT productivity by easing creation of sophisticated policies to manage XML traffic.
  • More powerful and easier to use than competing products.
  • Removes any need for configuration of lines of XML or XSLT code.

Out of the box security

Identity Management
  • Increase the returns on existing IT infrastructure assets through re-use of data and policies stored in existing security infrastructure Network management platforms
  • Leverage directory, certificate, and policy server infrastructure
  • Ensure only authenticated and authorized usage of Web Services
Comprehensive threat prevention
  • Protect XML systems from malicious data and unwarranted attack.
XML Schema formatting (conformance with XML Schemas, WS-I Basic Profile)
  • Validate content against prescribed schemas and avoid potential failure of target Web Services and ultimately business processes.
Archived evidential audit trail and monitoring of all transactions
  • Compliance with corporate and industry regulatory framework requirements by protecting the integrity, privacy and security of critical information.
Security for all flavors of XML applications
  • Facilitate greater ease of deployment with protection for multiple classes of XML applications including SOAP, Plain XML and REST.
Blacklisting with Network Firewalls
  • Isolate external IP sources of threats and prevent from future attacks
Security Mediation between different authentication systems
  • Federation of security context across different security domains
  • Increased choice of security environments to integrate with impacting on roll out
  • Save on security integration coding costs
  • Leverage existing security investments
Security as a service - samples include:- Token issuance - Digital signing - Authorization
  • Simplify security implementation for business processes can with standards based Vordel security infrastructure
  • Ease roll out of new products to partners and customers without impacting on their security infrastructures

XML Gateway for Management

Application-Level Networking(routing, transformations etc)
  • Route based on sender identity and content
  • Ensure XML messages are sent to the appropriate application.
Service Virtualization
  • Shield end point Web Services from direct access providing increased protection from external clients
XML Data Enrichment
  • Automatically populate content in XML documents from sources such as databases.
  • By putting this functionality onto XML Networking infrastructure, the information is automatically populated into the XML messages before they reach the consuming Web Services.
  • This simplifies and accelerates applications in ESBs or Application Servers.
Message Throttling
  • Protect Web Services from traffic spikes, by smoothing out the traffic. Enforce usage limit per client according to service usage agreements.
Fine-grained control of Web Services:- Wide range of alerting options Fine-grained logging, on a per-function basis Role-based Access Control for Web Services
  • Enhanced Web Services management functionality provides ever greater degrees of control for IT management
  • Allowing users to be authorized based on roles which have been retrieved either from Vordel's own user store, from a database, from a directory, or from a SAML authority.

Tamper-proof audit trail for all transactions.

Name encryption
  • Keep track of who is using applications
  • Comply with regulatory and corporate governance requirements for evidential transaction audit trail.
  • Meet privacy protection requirements

Interoperability

Support for wide range SOA platforms:
Microsoft .NET
BEA WebLogic/AquaLogic
IBM WebSphere
SAP NetWeaver
  • Vendor neutral policies
  • Smooth interoperability problems between platforms.
Identity Mediation
  • Support for wide range of different identity schemes ensures speed of set-up and avoids costly security integration coding.
  • Easily convert between username/passwords, SAML, certificates, etc.

Open, interoperable standards-based framework

Support for wide range of standards including SSL, WS-Security, WS-Trust XML, SOAP, and SAML 2.0.
  • Future proofs your XML Security investment by providing ongoing support for all key security standards as they emerge and evolve.
Vordel XML Gateway datasheet

Specifications

Web Services Protocols SOAP 1.1 & 1.2 , Plain XML (POX), REST, Web 2.0 (XMLHttpRequest, JSON)
Networking Service Virtualization, Content-based routing, Source-based routing, Identity-based routing, Protocol Conversion, XML Data Enrichment
Transport Protocols HTTP 1.0 & 1.1, JMS, MQ, FTP, SFTP, TIBCO Rendezvous, TIBCO EMS, SMTP, POP, TCP
Service Governance WSDL 1.2, WS-Policy 1.2, WS-SecurityPolicy 1.1, WS-Policy Attachment, UDDI
Policy Control Drag-and-drop policy creation, Conditional branching within policies, Standards-based Import/Export of policies, Policy chaining, Policy Migration, Wildcard values within policies, Distributed Policy Enforcement with Centralized Management
Identity Management Integration Oracle Access Manager, Sun Access Manager, Novell Access Manager, CA SiteMinder, RSA Access Manager, Entrust GetAccess, IBM Tivoli Access Manager, XACML
LDAP Oracle Internet Directory, Sun, Novell, Siemens, Microsoft Active Directory
Security and Identity Mediation Built-in Security Token Service (STS), SAML Token Issuance and Injection, WS-Trust, Credential Mapping, Token mapping (X.509 to SAML, Kerberos, etc)
Encryption and Signing SSL, XML Encryption, XML Signature, WS-Security SOAP Message Security, Threat Detection
XML Firewalling XML Entity Expansion and Recursion Attacks, XML Document Size Attacks, XML Document Width Attacks, XML Document Depth Attacks, XML Wellformedness based Parser Attacks, Jumbo Payloads, Recursive Elements, MegaTags – aka Jumbo Tag Names, Public Key DoS attack, XML Flood, XML Encapsulation, XML Virus, Replay Attacks, Resource Hijack, Dictionary Attack, Message Tampering, Falsified Message, Data Tampering, Message Snooping, SQL Injection, XPath Injection, Xquery Injection, WSDL Enumeration, Routing Detour, Schema Poisoning, Malicious Morphing, Malicious Include – also called XML External Entity (XXE) Attack, Memory Space Breach, XML Morphing, Parameter Tampering, Coercive Parsing, Field level validation, Scanning outgoing messages for sensitive content based on metadata or Regular Expression Pattern, WSDL Scanning, XML Bomb Attacks, Rogue SOAP Attachments, Detect viruses in SOAP Attachments, Schema Validation, XML Clogging Detection, SOAP Operation Filtering, IP Address Filtering, Traffic Throttling, HTTP Header Analysis, HTTP Query String Analysis, Malicious content signature library
Authentication Kerberos, HTTP Authentication (Basic/Digest), SSL Mutual Authentication, WS-Security 1.1 & 1.0, WS-Security UsernameToken, WS-Security X.509 Certificate Token, WS-Security Kerberos Profile and other types
Authorization Role-based access control, Authorization based on database query, Content-based authorization, Delegation to third-party Authorization systems
Audit Traffic Logging, Log Signing
Monitoring & Alerting Email, SNMP, Syslog, Windows Event Log, CheckPoint OPSEC, Embedded real time message monitor, Oracle Enterprise Manager, Adobe Flash Web-based monitoring
Extensibility JavaScript API for custom filters, Java API for custom filters, Conversion, XSLT, Custom Java Message Conversion
Service Quality Service outage detection, Service Level Agreement monitoring
Certificate Management X.509 Certificate Issuance, Certificate Revocation List (CRL), OCSP, XKMS, Certificate chaining
Data Integration Oracle 8,9, 10 & 11 Database, Mysql, Microsoft SQL Server, JDBC
Operating System Support Matrix Windows 7, Windows Vista, Windows XP, Windows Server 2003, Windows Server 2008, Red Hat Linux, Suse Linux ES, Ubuntu Linux, Debian Linux, Solaris 10 Sparc, Oracle linux
STS Built-in Security Token Service (STS)
Anti-Virus Sophos, ClamAV, Mcafee
Oracle integrations/interoperability Oracle Access Manager, Oracle Application Server 11g, Oracle BPEL Process Manager, Oracle EDI B2B Gateway, Oracle Enterprise Manager, Oracle Internet Directory, Oracle 8,9,10,11 Database, Oracle Linux
Performance - msgs/sec Up to 21,000 msgs/sec
Processor 2 x Intel Xeon 5520(2.26GHz, 8M cache, 5.86 GT/s QPI, Turbo HT), 1066Mhz Max Memory
Memory 6GB 1333MHz Memory
Disk Space 2 x 73GB SAS 10K 2.5” HD Hot Plug
Cryptographic Acceleration Cavium Nitrox PX NHB Acceleration Board
HSM SafeGuard CryptoServer HSM - FIPS 140 level 3
Power 717W Hi output redundant power supply (2 PSU), performance BIOS setting
Network Dual embedded Broadcom 5709 2P GbE LOM with TCP/IP Engine (4P TOE) and iSCSI Offload
Management Network Interface Included
Dimensions 1U Rack-mountable chassis 1U Rack-mountable chassis 30.39” (77.2cm) D x 18.99” (48.24cm) W x 1.68” (4.26cm) H Weight 39 lbs (17.69 kg)

Vordel will quickly get you started with its acceleration and governance products. Simply phone us, or fill out the Web form below

USA or Canada     1-(866)-460-0987
UK & Irl     0207 849 6886 or +44 207 849 6886
France     01 45 88 2333
Rest of EMEA     +44 207 849 6887
LATAM     +44 207 849 6887
APAC     +44 207 849 6887
ROW     +44 207 849 6887

To save you re-entering your information every time you wish to download a new Vordel document, we give you the option of accepting a cookie. This will allow for the auto-completion of mandatory information in forms. If you do not want a cookie to be set up, you will need to fill in the separate download forms.
Remember/Update my details

First name:

Last name:
Email Address:
Job Title/Position:
Company:
Phone:
Product of interest:
To help us identify that this is a genuine form submission please type in the words(seperated by a space) in the image to right

if you find the image difficult to read press the button to reload a new image
 

Vordel respects your desire for privacy. Information collected from this form will not be given, sold or shared with organisations external to Vordel without your consent. We will use the information you supply to contact you regarding your question, comment or inquiry. The information you supply will not be used for any other purpose without your consent. Privacy policy.

Learn More
Download the Vordel XML Gateway datasheet
Learn more about how Vordel products are deployed in industry