A software application by Netegrity aims to make it easier for organisations to exchange user-identity and sign-on information securely using Security Assertion Markup Language.
The Netegrity SAML Affiliate Agent is designed to run on the servers that support business-to-business (B2B) and business-to-customer (B2C) sites as well as corporate intranets. The lightweight application will make it easier for companies to share user and sign-on information between their Web sites regardless of the technology infrastructure being used on each side of a transaction, claimed Bill Bartow, vice-president of products at Netegrity.
SAML is an XML (Extensible Markup Language) standard for exchanging login information between distinct Web sites.
Netegrity's SiteMinder version 5.5 access management product already supports the SAML specification adopted by the Organization for the Advancement of Structured Information Standards (Oasis) last November, enabling SiteMinder customers to create an SAML-based identity and share it with a partner Web site.
With the new agent, partner sites that are not using SiteMinder will be able to recognise and authenticate that SAML identity from sites that are.
The SAML Affiliate Agent manages critical sign-off as users move from partner site to partner site, terminating sessions that might otherwise be left open after a user clicks away from a Web site or logs off. It will also eliminate the need for custom development by companies wishing to link Internet and Web-based services.
And, by allowing one set of user credentials to be used across sites, the SAML Agent will reduce the cost of user administration and make it easier to enable and disable user access to partner sites.