Difference between revisions of "OWASP SIMBA Project"

From OWASP
Jump to: navigation, search
Line 4: Line 4:
 
With the support of the OWASP (Open Web Application Security Project) community SIMBA is constantly improved so current security vulnerabilities are better supported and proactive work is done against future vulnerabilities.<br>
 
With the support of the OWASP (Open Web Application Security Project) community SIMBA is constantly improved so current security vulnerabilities are better supported and proactive work is done against future vulnerabilities.<br>
 
SIMBA is not vendor specific, developed in an international community and is supported by all major platforms.<br><br>
 
SIMBA is not vendor specific, developed in an international community and is supported by all major platforms.<br><br>
Open-source software under [http://www.apache.org/licenses/LICENSE-2.0.htm]Apache License 2.0 <br><br>
+
Open-source software under [http://www.apache.org/licenses/LICENSE-2.0.htm|Apache License 2.0] <br><br>
 
Brief list of features
 
Brief list of features
 
*Distributable and cloud ready
 
*Distributable and cloud ready

Revision as of 07:51, 9 August 2011

Main

Mission statement

SIMBA (Security Integration Module for Business Applications) is a User Access Management system that can be integrated with any business application. The purpose of the project is to secure an application fast and easy. Because SIMBA itself is generic it can be customized for every project. Many features are customizable e.g. designing your own authentication chain is easy and fast by using existing or newly created building blocks. A separate Flex manager application is available to manage the data, view the audit logs and configure parameters.
With the support of the OWASP (Open Web Application Security Project) community SIMBA is constantly improved so current security vulnerabilities are better supported and proactive work is done against future vulnerabilities.
SIMBA is not vendor specific, developed in an international community and is supported by all major platforms.

Open-source software under License 2.0

Brief list of features

  • Distributable and cloud ready
  • Simba token for Single Sign-On
  • Possibility to use a success URL or the target URL
  • Local cache or distributed cache (based on events)
  • Authentication
    • JAAS modules like Active Directory/LDAP, In Memory database and database
    • WS Security Token support
    • SAML 1.1 and 2.0 support (coming up)
    • E-ID support (coming up)
  • Authorization
    • URL restriction
    • Excluding resources
    • Authorization by user, roles, groups and policies
  • Management (Flex application, separate war to deploy)
    • Manage users, groups, roles and policies with immediate effect over all deployed instances
    • View audit log
    • View and manage current sessions
    • Manage configuration parameters
  • For more features see (link)


Project About

PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP SIMBA Project (home page)
Purpose: SIMBA (Security Integration Module for Business Applications) is a User Access Management system that can be integrated with any business application. The purpose of the project is to secure an application fast and easy. Because SIMBA itself is generic it can be customized for every project. Many features are customizable e.g. designing your own authentication chain is easy and fast by using existing or newly created building blocks. A separate Flex manager application is available to manage the data, view the audit logs and configure parameters.

With the support of the OWASP (Open Web Application Security Project) community SIMBA is constantly improved so current security vulnerabilities are better supported and proactive work is done against future vulnerabilities. SIMBA is not vendor specific, developed in an international community and is supported by all major platforms.

License: Apache License 2.0
who is working on this project?
Project Leader(s):
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: Mailing List Archives
Project Roadmap: View
Main links:
  • [www.simbasecurity.org www.simbasecurity.org]
Key Contacts
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
Not Yet Published
last reviewed release
Not Yet Reviewed


other releases