The new commercial Internet is characterized by hundreds of ISPs, many on shoestring budgets in low margin competition. Enterprises building Web services to interact with suppliers, vendors and customers face the challenge of many exposure points, security threats and unauthorized information access.

SSL works just fine for transport-level security but breaks down at the message level. To address the need for an end-to-end security model business and government clients need real-world implementation of best practices in identity management, access control, threat protection, security management and key management cryptography, enabling secure access to application servers.