Audience: technical

NMA ZSentry SAML

ZSentry offers Security Assertion Markup Language (SAML) & Single Sign-On (SSO) services, providing customers with full and fine control over the authorization and authentication of user accounts that can access web-based applications at the customer, at ZSentry, or elsewhere.

Pricing: This service is priced attractively for bulk sale and is offered in addition to a Desktop, Web, and Mobile ZSentry subscription. There is no free personal offer for this service. For pricing and quantity discounts, Government, Non-Profit, and Education pricing please Contact us.

Purpose:
NMA ZSentry SAML (Security Assertion Markup Language) and Service-Oriented Architecture (SOX) allow for secure, usable, quick, and seamless exchange of critical information. ZSentry SAML fully supports a multi-party regulatory environment where customers have varying needs to actively protect and control the release of private and sensitive information.

SAML and SSO

SAML is an XML-based framework for communicating user authentication, entitlement, and attribute information, developed by the Security Services Technical Committee of OASIS.

As its name suggests, SAML allows business entities to make assertions regarding the identity, attributes, and entitlements of a subject (an entity that is often a human user) to other entities, such as a partner company or another enterprise application. More importantly, SAML allows applications in one security domain to communicate with applications in another security domain, on behalf of a user whose identity does not have to also flow with the data.

In terms of the SAML model, while using its SaaS "Sans-Target" technology, ZSentry SAML can act as the service provider (SP) or the identity provider (IdP).

Software-as-a-Service Sans-Target (SaaS-ST)
Each customer's data is protected in separate by our "Sans Target" ZSentry technology, with configurable, encrypted metadata (keys also protected by our "Sans Target" ZSentry technology) providing a protected, standards-compliant, unique user experience and feature set for each customer. ZSentry helps allay data storage security concerns, both locally and in the infrastructure. This is even more important in the context of "cloud computing" and SaaS, when user data may be stored in the "cloud". With ZSentry, customer access audit trails and customer data storage can be securely maintained in the "cloud" with encrypted, de-identified numbers, which access keys are provided and secured by the ZSentry technology.

Identity Provider (IdP)
The ZSentry technology allows our IdP solutions to work without ever exposing the users' private data, passwords, keys, or data. Therefore, ZSentry's user data and keys are never in danger from outside or inside attacks, neither in the servers providing the service nor in the user's desktop or laptop client accessing the service.

As an identity provider, ZSentry securely controls usernames, passwords and other information used to identify, authenticate and authorize users for web applications that are hosted by partners.

There are a number of existing open source and commercial service provider solutions that can help you implement SSO with ZSentry SAML.

Preventing false login (eg, by stealing a user's credentials with a key-logger) and duplicate use of the same account, may be a threat in some cases, especially with SSO. In addition to ZSentry Adaptive Security, which helps allay such concerns, people can use ZSentryID (PDF) to introduce a fresh second-channel challenge that changes for every authentication, for example by cell phone SMS.

Service Provider (SP)
When ZSentry acts as an SP, ZSentry allows and provides services such as secure email with ZSentry Mail, secure epayments with ZSentry Bill, secure and private online voting (through our partner Safevote, Inc.), and secure document archive with self-destruct option using ZSentry Vault.

Requirements
ZSentry SAML is a zero-footprint interface. ZSentry does not require Java, ActiveX controls, or custom plugins. Javascript is used. There is no download, no installation process, no removal or removal tool, no additional security risk.

Use Now:

Contact Us >> for information on licensing and using the ZSentry SAML & SSO services.

Main Technical Notes
Overview   Key Features   ZSentry App   ZSentry Client   API   ZS / PKI / PGP
  Security   Usability   HIPAA & HITECH   Experience   Why ZSentry?   Red Flags   SUMMARY

Development and © by NMA

Trademarks and Copyrights as described in our Legal Statement. We protect Your Privacy.