Browse by Tags

• WS-Trust 1.3 and WS-SecureConversation 1.3 now standardized

  There's a lot happening in the web-services standards world right now. A good example of this is that both WS-Trust 1.3 and WS-SecureConversation 1.3 have now been ratified by OASIS. WS-Trust provides a simple protocol to allow someone to request a security token containing some set of claims from an Identity Provider (IdP). Because WS-Trust is part of the WS-* suite of protocols, it can be composed with other protocols to, for example, enjoy data integrity (signing) and data privacy (encryption) using WS-Security and WS-SecureConversation. WS-SecureConversation adds to the capabilities of WS-Security and essentially enables the construction of a secure context that optimizes multiple calls between two parties. These protocols are both used by Windows CardSpace, along with several other current and emerging technologies that enable dynamic, user-initiated identity federation. Why is the ratification of these two important protocols a significant event? Well, as Gartner puts it : "The availability of these new standards means that Web services security has finally reached an acceptable maturity level. The issuance and dissemination of credentials between different trust domains via an STS can now be achieved using a syntax that is familiar to most developers." It's great to see the rich fabric of the WS-* protocols now reaching a level of maturity and sophistication that enable solutions to previously costly/difficult/impossible problems. Identity federation is just one example Read More... Posted Friday, April 06, 2007 12:42 PM from Welcome to The Metaverse | 0 Comments Filed under: Identity, Service Orientation

• New Direction

  Long-time followers of my blog will no doubt remember when I started this blog in Feb 2004. I began by asking the hot question of the day: " What is Service Orientation " and " Is .NET Remoting Dead? ". Since then I have continued to provided considerable guidance on how to position Microsoft's current distributed systems assets relative to the new wave of technologies in WinFX, as well as discussing many meta-issues such as the performance characteristics of distributed systems technologies , and much general discussion around SO, SOA and ESB. Today marks the beginning of a change in this blog - as evidenced by the title change! Today, I am happy to announce a change in position: I am now Product Manager of "InfoCard". Now, before you ask, I'll will explain "InfoCard" in several subsequent posts, but if you can't wait to find out, I suggest you go read through some of the whitepapers currently posted to the "InfoCard" portal . If you don't want to read, then go here , register (it's free) and watch BillG's keynote where you'll hear and see some of Microsoft's strategies for protecting you from abuse online and from a variety of online identity fraud (including a cool demo of "InfoCard" demonstrated by yours truly). Does this mean I'm not going to comment on WCF, SO, SOA, ESB, etc any more? You'd be that lucky! ;) Of course I will, but I'll also be interleaving discussion involving what Identity means, why it's important, what happens if we, the entire industry , don't work together Read More... Posted Friday, February 17, 2006 3:22 PM from Welcome to The Metaverse | 0 Comments Filed under: Identity, Service Orientation