The first service, the VeriSign Access Management Service, is based around IBM's Tivoli Access Manager and is a managed service for access control and authorisation. It supplies administrators with a single console from which they can automate the management of users, groups and policies across multiple software infrastructures.
The second service, called the IBM-VeriSign Solution for Secure e-Business Integration, is an enterprise application integration (EAI) service intended for use with trusted extranets. To be sold through IBM's Global Services division, the solution includes IBM software as well as VeriSign's Authentication services, which helps reduce risk and improve collaboration among business partners and suppliers.
"What we think users will like about this is it takes things like Tivoli's Policy Manager or the Asset Management service and converts them into a managed service. This way corporate users can extend them out across an enterprise, and smaller and medium-sized companies can acquire an enterprise-level security service," said John Weinsvhenk, vice-president of VeriSign's Enterprise Security group.
Officials from both companies claim the products gives users a choice in how they can deploy their access management solution, for those who prefer to keep access management capabilities internally.
"With so many users really focused on ROI, we think a managed services model allows both large and smaller businesses to deploy applications and manage them on their side of the fence, but also allows VeriSign to manage all the users, security policies and the single sign-on," said Venket Raghavan, market manager for IBM's Tivoli Security.
The Access Management feature is supposed to help users better define and administer security policies from a single location, company officials claim. It has a single sign-on function for authorised users, which allows them to access a range of network applications and services.