Layer 7 Technologies Unveils New OAuth Toolkit at Gartner Catalyst Conference

New Solution Offers Framework for Controlling Broad Range of OAuth Scenarios Across Cloud, Web and Mobile

Gartner Catalyst Conference—Layer 7 Technologies, the leader in Gateways for service-oriented integration, cloud connectivity and Web-to-mobile information sharing, today unveiled its new OAuth Toolkit technology at the 2011 Gartner Catalyst Conference. The toolkit is the industry’s first enterprise-class solution to provide a generalized framework for handling a broad range of OAuth scenarios across cloud, Web and mobile applications.

OAuth is a simple way to interact with published data, and is a popular method to allow secure API authorization. Based on an open protocol, OAuth supports cloud-to-cloud interactions and cross-domain federated single-sign on (SSO) in a Web browser, enabling websites to provide a more streamlined user login experience with the additional benefits of enhanced privacy and security.

Real-world implementations of OAuth have proved to be varied, especially implementations based on the draft specifications of OAuth 2.0, which change frequently in concert with ongoing draft updates. As the OAuth security standard evolves, enterprises require increased flexibility for OAuth implementations with an eye to adapting their support over time.

“The Layer 7 OAuth Toolkit is the first solution of its kind that enables enterprises to control policy and identity aspects of many different OAuth token operations, a capability that is particularly important as enterprises increasingly use OAuth to authorize access to APIs in cloud settings,” said Phil Walston, vice president of product management at Layer 7 Technologies. “By allowing enterprises to seamlessly manage their OAuth implementations as the standard evolves, the toolkit simplifies operations while providing rigorous security and control.”

With the Layer 7 OAuth Toolkit, enterprises and cloud service providers can:

  • Implement the policy and identity STS controls to handle a wide range of OAuth token operations and credential types, including HMAC-SHA1 or RSA-SHA1 signature methods, SAML and the OAuth WRAP specification
  • Mix and match how they implement OAuth with SAML
  • Drop in new signature and credential methods without changing their APIs

Layer 7’s OAuth Toolkit supports a variety of standards, including OAuth 1a, OAuth 2.0, SAML 1.1, SAML 2.0, WS-Trust, REST and JSON, among others.

Layer 7 will be demonstrating its OAuth Toolkit at the Layer 7 Hospitality Suite at Gartner’s Catalyst Conference at the San Diego Hilton Bayfront, Aqua Room 311, from 6:00 – 9:00 p.m., July 26-29. For more information about the Gartner Catalyst Conference, please visit

About Layer 7 Technologies

Layer 7 Technologies helps enterprises secure and govern interactions between their organization and the services they use in the cloud; across the Internet; and out to mobile devices. Through its award-winning line of SOA Gateways, Cloud Brokers and API Proxies, Layer 7 gives enterprises the ability to control identity, data security, SLA and visibility requirements for sharing application data and functionality across organizational boundaries. With more than 150 customers spanning six continents, Layer 7 supports the most demanding commercial and government organizations. Layer 7 solutions are FIPS compliant, STIG vulnerability tested and have met Common Criteria EAL4+ security assurance.