NextLabs® Reveals Control Center 4.0, the First Enterprise-Class Identity-Driven Policy Management System

Share Article

Control Center significantly reduces the cost of development, management, and audit of applications to help companies meet governance, risk and compliance objectives.

Control Center 4.0 has been used by customers to centralize policy across the information lifecycle, as data is created, stored, accessed, used, and shared

NextLabs®, Inc., the leading provider of policy-driven information risk management software for Global 5000 enterprises today announced Control Center 4.0, the first enterprise-class identity-driven policy management system with a complete, policy-based, application development environment. Control Center is an XACML-based policy system that includes a policy management server, graphical policy authoring and management tools, and distributed cross-platform policy runtime engine. Control Center provides a comprehensive set of services for policy enforcement point (PEP) developers to dramatically improve developer productivity, meet compliance and security objectives, and lower operations and audit costs across the broadest set of systems and applications.

According to Gerry Gebel, Vice President and Service Director with Burton Group Identity and Privacy Strategies, "The historical approach is for developers to incorporate security decisions into their application logic. However, developer bandwidth and productivity are negatively impacted, developers may not have the expertise to perform security coding, and authorization is more difficult to manage across multiple applications when each application has its own embedded policy model and authorization process. One financial institution estimated that nearly 30% of its application development budget was consumed by building and maintaining code that should be instantiated within shared infrastructure services."

Enterprises have centralized identity management but continue to struggle with managing policy across hundreds of application and security silos. Control Center bridges the gap between corporate identity infrastructure and data security, allowing companies to standardize the management of data security policy, improve compliance, and reduce costs. Using Control Center companies can:

Control Center allows companies to separate policy logic from business logic making application developers more productive, enabling central management, and allowing companies to more easily adapt to change compliance or security requirements.

  • Reduce the cost and improve effectiveness of data security

Managing policy within each application is expensive to implement and maintain. A policy change will typically require the development of custom code, which may need to be applied across several heterogeneous applications. The cost is so prohibitive, that many organizations resort to complex manual processes which are ineffective and difficult to audit. Control Center reduces the cost to implement, maintain, and audit policy by providing shared infrastructure, based on standards, to create, manage, and audit policy across applications.

  • Leverage identity management investments

Control Center integrates with the identity management infrastructure to allow businesses to centrally manage what users can do with data and applications. Control Center provides out-of the box integration with corporate directories, identity management, and other attribute providers (e.g. asset management, human resources management).

  • Deploy to thousands of endpoints

Control Center has a unique distribute architecture that allows the system to evaluate and enforce policies on thousands of endpoints, including servers and even disconnected laptops. Control Center is the only policy management platform available that has demonstrated performance and scalability for enterprise wide deployments.

  • Have a single policy system for data protection and entitlement management

The Control Center Policy Management System supports the NextLabs Enterprise DLP™ and Compliant Enterprise® products, which provide pre-built data protection and entitlement management applications for Windows and Linux environments.

"Control Center 4.0 has been used by customers to centralize policy across the information lifecycle, as data is created, stored, accessed, used, and shared," stated Andy Han, Vice President and General Manager of Products at NextLabs. "It is a great example of the promise of the XACML standard."

NextLabs will present "Achieving Data-Centric Security with the XACML Standard "at the RSA Conference 2009 in San Francisco at the IBM Exhibit on April 23, 2009 from 3:30-4:00pm. The presentation focuses on the application of the XACML standard that is at the core of the Control Center policy management system.

NextLabs Control Center 4.0 is available immediately. For more information, please call 800-898-3065 or visit NextLabs on the Web at .

NextLabs®, Inc., is the leading provider of policy-driven information risk management software for Global 5000 enterprises. Our software offers a cohesive solution for improving compliance and mitigating information risk by helping companies achieve safer and more secure internal and external collaboration, and ensure proper access to applications and data.

Our flagship data protection and entitlement management products, Enterprise DLP™ and Compliant Enterprise®, combine with Control Center - a XACML-based policy server and integrated workflow with identity-driven enforcement technology to offer the most comprehensive information risk management solution. Our products preserve confidentiality, prevent data loss, and ensure compliance across more channels and more points, within a single unified solution with the unmatched user acceptance and Total Cost of Ownership (TCO).

NextLabs' partnerships with industry leaders such as IBM, SAP, Microsoft, Adobe, and PTC bring to market industry-focused solutions that combine industry best practices with turnkey applications, to meet customers' information risk management requirements.

For more information on NextLabs, please visit

NextLabs Media Contact:
Clay Mock
Press Relations
NextLabs, Inc.
clay.mock (at) nextlabs (dot) com
650-577-9101 x227

NextLabs, Enterprise DLP, ACPL, Compliant Enterprise, and their corresponding logos are trademarks or registered trademarks of NextLabs, Inc. in the United States. All other company, product, or service names mentioned may be trademarks or service marks of their respective companies.


Share article on social media or email:

View article via:

Pdf Print

Contact Author

Clay Mock
NextLabs, Inc.
650-577-9101 ext. 227
Email >
Visit website