Based on HTTP Proxy concepts, TrustBuilder Portal provides a transparent gateway for Web, Mobile and Application-to-Application (REST and SOAP) security in conjunction with TrustBuilder Policy Engine.
It executes Authentication and Authorization enforcement (PEP) whereas such decisions are made by TrustBuilder Policy Engine (PDP), which now also contains a powerful authorization engine, offering Attribute Based Access Control, Role based Access Control as well as Risk based Access Control.
TrustBuilder Gateway also ensures sophisticated front-end and back-end session management, while supporting credential enrichment & mapping as well as dynamic authorization data. Session management is integrated across web, mobile and API access.
The combination of these components provides a ful blown Access Management solution, ready for a distributed world.