NEWS RELEASE

Cams Web Single Sign-on for Apache 2.0 Ships

San Diego, CA, November 19, 2003 - Cafésoft announced today that it is now shipping web single sign-on support for the Apache 2.0 web server. The new Cams Apache 2.0 web agent enables web single sign-on security across a farm of Apache 2.0 servers and between Apache 2.0 and other web and J2EE servers such as Microsoft IIS, BEA WebLogic, IBM WebSphere, JBoss, Oracle 9iAS, and Tomcat. Cams is a secure, flexible, and affordable web single sign-on software solution that centralizes web application security control and management.

"We're excited to announce Cams web single sign-on support for the Apache 2.0 web server," said Gary Gwin, Cafésoft president and CEO. "We initially released Cams with support for Apache 1.3 only, but an increasing number of customers are requesting support for Apache 2.0. We're finding that popularity partially due to the inclussion of Apache 2.0 as the default web server for Red Hat. Cams now provides a security umbrella that protects web resources on Apache 2.0, Apache 1.3, Microsoft IIS, and J2EE servers, which gives us support for over 90 percent of the HTTP servers on the market."

Cams makes sites more secure and manageable by centralizing application security decisions, enforcement, and management, rather than implementing security within each web application or server. This centralized approach to web security enables companies to reduce development and administration complexity and costs, while improving time-to-market, security, and user satisfaction for business enabling web projects. Cams also provides web single sign-on to eliminate the cost, risk, and pain associated with multiple user accounts and sign-ons to the same site.

Cams service oriented architecture deploys into heterogeneous environments with an architecture that scales for high-volume sites. Cams provides user directory integration with industry-standard LDAP and SQL databases, including Microsoft Active Directory and LDAP v3 compliant servers. Primary product features include:

• Web single sign-on to web resourses on web and J2EE application servers
• Access control based on roles (RBAC), date/time, location, and custom rules
• Simplified and centralized security policy administration
• Security event logging, analysis, and real-time notification
• Flexible customizations via open APIs
• Cross-platform support including Windows NT/2000/2003, Linux/UNIX, and Solaris

"Sites using Apache 2.0 can now benefit from the Cams security architecture, which enables companies to implement solid web application security without embedding security policy into application code," said Norbert Kuhnert, Cafésoft chief technology officer and founder. "Whether an Apache 2.0 server is hosting static documents, dynamic web applications including PHP, Perl, cgi-bin, mod_jk, or other scripted content, or proxying HTTP requests to other web servers, Cams provides the security foundation required to authenticate users, enforce a site-wide security policy, and provide trustworthy web single sign-on."

The Cams Apache 2.0 web agent is available immediately for Apache 2.0.40 and 2.0.47 on Red Hat Linux. Other versions of Linux may also work. A free Cams Tour download is available on Cafésoft's web site at http://www.cafesoft.com. The Cams Tour is the best way to learn about Cams terminology, architecture, and web application security in general. Cams software licenses are available starting at $2,995 per server. Evaluation licenses, which include access to the Cams Apache 2.0 web agent, are available upon request.

Cafésoft develops and markets Cams, which is a secure, flexible, and affordable web single sign-on software solution. Businesses around the world use Cams to give employees, customers, and partners secure access to protected web applications and resources. By using Cams, customers: 1) improve time-to-market; 2) reduce development, support, and training costs; 3) enable secure business relationships; 4) improve security compliance and accountability; and, 5) simplify security implementation and management. Headquartered in San Diego, California, Cafésoft is a private company founded in March of 1996. More information can be found at http://www.cafesoft.com.

- 30 -

Cafésoft is a trademark of Cafésoft, LLC. All trademarks, service marks, or registered trademarks are the property of their respective companies.