BEA Systems is to release WLES (WebLogic Enterprise Security), its first standalone security software product.
The product features a distributed security architecture that can be used across web, application, and custom-made applications. WLES is also designed to free developers from having to code in security for each application developed, a costly, laborious process.
George Kassabgi, BEA's vice president and general manager of application security infrastructure, said that with WLES, security such as authentication and authorisation can be defined once and applied across existing and new servers as a service.
WLES is a set of application services, Kassabgi said. "This is opposed to writing security for each server, or worse, ignoring security all together."
He added that BEA's approach to security differs in that it authenticates users, and it does not secure applications on an individual basis. "We're also saying you can no longer charge per user, but per capacity."
Forrester Research analyst Randy Heffner believed WLES is an important development, yet he admitted he would not classify it as revolutionary.
"BEA is delivering an important set of functionality, but not all will buy into right it away," he said.
"However, with this BEA has taken a turn to be a more general platform. No matter what [enterprises] are running, they should think about it as a standalone security solution."
WLES also features a centralised web-based administration console which can be used to distribute updated security policies to the security service running on servers.
Scott Tyler Shafer writes for InfoWorld