The latest version of Entrust Authority Security Manager, the identity and security management software platform from Entrust Inc., adds more comprehensive security management options for applications exploiting native operating system features of Microsoft Windows.

Security Manager 7.0 provides support for the Microsoft File Encrypting System, Smart Card login and others built on the Microsoft Cryptographic Application Protocol Interface (CAPI), which is the link between Windows desktop applications and security services including authentication, encryption and digital signatures.

The release also provides users with more policy and audit controls to meet the specific requirements of privacy legislation such as the Health Insurance Portability and Accountability Act, the Gramm-Leach Bliley Act and the Sarbanes-Oxley Act.

"Customers have a greater need for policy-level controls," says Leah MacMillan, director of product marketing for Entrust. "We have offered that in the product but we have taken it a step further now to a very fine-grained level of control." For instance, companies can set up different policies for digital signatures than for encryption authentication methods.

Other highlights of version 7.0 include: the ability for audit logs to be published to third-party tools via an XML interface, based on the Simple Network Management Protocol (SNMP) standard; and the ability for cryptographic key pairs to be split between smart cards and disk storage, while maintaining transparency to the user and automated administration.

The addition of an optional Web-based console enables customers to delegate end user security administration to a local level, such as a branch office, while preserving the strong security features of the base product.

"Customers want to be able to delegate some controls out to their users," says MacMillan.

The product is priced at $25,000 for the server license and $30 per user. A typical deployment to 5,000 users is priced at $175,000 as a result.