BAE Systems Leverages Trusted Partnership With CSC to Manage Identity-Related Risks

BAE Systems, a leader in the aerospace and defense industry, faced challenges to provide seamless access to seven CSC-hosted service applications requiring multiple logons leveraging BAE Systems' authentication mechanisms and to identity federation environment to enable easier integration with partners and suppliers. BAE turned to CSC to implement identity federation with them (and potentially other third parties) as a way of managing identity-related risks. The CSC team provided a set of enabling technologies and an organizational framework for maintaining trust that allowed them to accept identity credentials that were maintained by BAE Systems. For the deployed solution, CSC functions as the service provider and BAE Systems as the identity provider. Under the identity federation environment, this service deployed Microsoft Active Directory Federation Services (ADFS) to specific BAE Systems' Active Directory (AD) domains, enabled ADFS to generate Security Assertion Markup Language (SAML) tokens and pass to Computer Associates' SiteMinder Federation Security Services (SFSS), and implemented data migration and ADFS support processes. The advantages for the client included improved user experience, future exploitability, increased business efficiencies and increased security. The CSC Federated Identity Management solution offers the means to establish federated, trusted relationships across software vendor solutions for all trusted partners. The ability to assess environments and business relationships and optimize solutions for any trusted federation in a repeatable, disciplined framework is brought by CSC.