SecureSpan Gateway

FAQs

Is SecureSpan only available as a hardware appliance? 
We’ve designed SecureSpan to support a variety of deployment scenarios, budgets and business requirements. You can purchase SecureSpan as:

• Hardware – for high-performance environments, SecureSpan is available as a 1U 64-bit multiprocessor platform that features dual power supplies, four GE/FE NICS and mirrored hot-swappable drives.

• Software – for organizations that prefer a do-it-yourself approach using their own hardware, SecureSpan is available for Sun Solaris, SUSE Linux and Red Hat Linux.

• Virtual Appliance – typically deployed in development and QA environments where performance is not the primary concern, the cost-effective SecureSpan Virtual Appliance supports VMWare/ESX deployments and is “VM Ready” certified.

Does SecureSpan support clustering?
Yes. SecureSpan supports true clustering so you can administer multiple devices centrally in a cluster and in multiple clusters.

Can I publish/update policies on a live “in production” SecureSpan device?
Yes. While we don’t recommend you create and implement new policies on a production version of SecureSpan, it is possible to do so. The next message processed by SecureSpan will be subject to the new/updated policy.
The practice we recommend is to migrate a tested policy from a QA/test environment to the production SecureSpan device, and then publish it live. In either case, there’s no need to bring down and restart the system to implement new/updated policies.

Is SecureSpan upgradeable? 
SecureSpan provides maintenance releases as packaged software updates and major releases as packaged migration upgrades. You can implement updates and upgrades on your own remotely on soft appliances, and they can be rolled back, if necessary.

What third-party identity products does SecureSpan support? 
SecureSpan supports integration with leading identity, access, SSO and federation systems, including LDAP, Microsoft Active Directory/Federated Services, Oracle Access Manager, IBM Tivoli (TAM and TFIM), CA SiteMinder and TransactionMinder, Sun Java Access Manager and Novell Access Manager.

How does SecureSpan compare with webMethods Mediator? 
SecureSpan and Mediator are both service intermediaries. However, each is designed to service a specific purpose in your service infrastructure. They are complementary when used together.

Mediator is suitable as the primary mediation component of your service infrastructure. It is tightly integrated with CentraSite’s metadata, policy and lifecycle management capabilities. This allows you to easily and uniformly govern run-time access to hundreds of services and manage their consumption. You can also extend Mediator  as needed by leveraging services running on the webMethods Integration Server/ESB.

SecureSpan serves as the “on-ramp” to your service infrastructure in situations in which you need to secure services outside your firewalls to partners and customers. In such situations, you can off-load heavy XML and security processing to SecureSpan. SecureSpan’s hardware appliance and support for broad range of security standards make it ideally suited for this. Further, SecureSpan’s threat protection capabilities help protect your services against malicious attacks.