EchoSystem

Identita’s comprehensive Identity Management Platform enables your organization to easily deploy and manage secure identities and reliably maintain consistent identity data across your company to control access—and to control how access is used.

Safely extend access to sensitive corporate resources to employees, partners, suppliers, and customers. Manage who or what application has access to what parts of your business. Achieve more effective corporate governance, and provable legislative and regulatory compliance. EchoSystem enables managing multiple types of identities across complex heterogeneous environments, including unique identities required for Web services applications and devices handling internal and external transactions.

Easily manage your powered cards and users through any secure Web browser. Identita’s EchoSystem Identity Management administration interface is easily accessed through the Internet, requiring no special software or proprietary tools to manage your powered cards and card usage remotely. Remote admin features include full user notification and management of card status, access privileges, event logs, PIN codes, linked accounts and profiles, and more.

Identita’s Andromeda Appliance is a J2EE based back-end with a truly complete feature set:

• Supports multiple smart card and token types, including OATH and OATH-OCRA based tokens
• Immune to phishing and pharming through a comprehensive secure end to end protocol
• High availability
• Full Unicode support for any language. Supports Arabic and Asian languages
• A complete Radius server written entirely in Java
• Supports Active Directory, Novell NDS and LDAP directories
• Supports most popular database formats

Pipeline Architecture. The server architecture is based on a pipeline processing design. Requests and responses pass through a chain of modules (pipeline) giving the module a chance to act on the requests and/or alter responses. This patterns made it very easy to change and alter server behavior and tweak it to suit different business needs without altering any core code-base. To extend an existing business case to meet a customer need, we do not need to modify server code…simply re-configure the pipeline.

Dynamic Use-case Support. The server allows for dynamically adding new business use cases that were never supported before without altering or affecting any existing components. The vertical design of use case processing makes it very easy to support use cases as they become available.

Pluggable Endpoints. In anticipation for upcoming new communication protocols, the server supports a pluggable-endpoint pattern that allows the server to communicate using any communication protocol/media withough affecting the server internal processing and without requiring and changes to existing code base.

Multiple Hosting Environments. The whole server is designed so that it can be easily hosted inside any kind of host application. The hosting shell is completely independent of the server business code. The server can be hosted as easily inside a Windows Service, Unix Daemon, Command Line Application, or even embedded inside other applications and frameworks.

Unlimited Scaling-out Capability. One goal of the design was to allow the server to scale-out. Hence, the current design does not require any server-side state or session data to be saved on server. In theory, you could have un-limited number of server instances running in a farm and load-balance the processing of requests. There is no server-affinity, hence a clinet may start a session with one server instance and continue using the same session even if that server instance crashed and load-balancer assigned the client to a different instance.

View PDF on EchoSystem