Browse by Tags

• Architecture - WS
• CardSpace
• Identity
• Infocard
• the Web
• WCF
• Windows Cardspace
• Windows Communication Foundation
• WPF

• Otto Store: walking through the CardSpace experience

  If you are watching the Card-space, I'm sure you didn't miss it: the Otto Store smart client application, announced during TechEd Europe and VSLive, is now up and running. You can download and install it from there . This news is relevant to this blog in different ways. The Otto store is the first application available on the internet to use managed cards. It is the first application to secure web services call via CardSpace. And among the customers I have worked with in the last year, Otto is the first one to release a CardSpace based application. Hoooray! It was a pleasure to work with everybody on the project, I can't tell you the satisfaction of seeing all this beautifully coming together. I could fill the entire post just with juicy annedoctes, like the time when me and Jaime (the great guy who dealt with the WPF parts here in Corp) flew in Germany for the first ADS: we took an early cab from downtown Munich to the offices, and it was the very first ride of the very first work day of our extremely young driver. A 20 mins drive became a 45 mins tour in the foggy & frozen countryside around Munich, with the driver increasily panicking: the GPS was banned by his company policy, so I could not pull out my beloved Universal and give him a hand. He was very brave and professional! In the end we did it to the meeting, though with some delay: looking at he app today, anyway, looks like that delay didn't really matter that much. But you're not interested in annedoctes, are you: Read More... Posted Saturday, February 03, 2007 12:45 PM from Vibro.NET | 0 Comments Filed under: Identity, Windows Cardspace, CardSpace, WCS, Architecture - WS, Infocard, WPF, Windows Communication Foundation, Windows Presentation Foundation, WCF, the Web

• UniqueID maintenance in the store

  The comments to my blog stopped working. I am working on it, but in the meanwhile here there's the answer to a comment left by Matt to my former post on PPID vs UniqueID . Monday, January 15, 2007 6:55 AM by Matt Ellis # re: UniqueID and PPID Hi Vittorio. I'm wondering what happens if the IP's cert changes (perhaps the private key is compromised)? With a bit of co-ordination, you can update your copy of their public key, so you can still verify incoming tokens, but would the unique id now be incorrect? Is this even a situation that can happen? Cheers! Matt Hello Matt, apologies for the delay. We exclude from the discussion the selfissued card case: if the public key changes, this means that the eintire card changed (including the PPID) and it makes sense to ask to repeat the registration. That said: Your unique ID can be a function of the public key of the IP and of the PPID: Uid = F(Pipkey,PPID) In theory, if you (the RP) stored the PPID somewhere (and it didn't change in the process, more about it later) you could just reapply the F above and substitute the Uid value in your store. In practice: when you use a managed card, you can't be sure of what the PPID value will be. Actually, we recommend to IPs to make that claim available but they can choose not to add it at all. For self issued cards the PPID is a function of the cardID and of the public key of the RP: PPID = G(Prpkey,Cardid) Even if we'd apply the same formula for managed cards: the Prpkey may not be available to the Read More... Posted Wednesday, January 17, 2007 1:22 PM from Vibro.NET | 0 Comments Filed under: Identity, Windows Cardspace, CardSpace, WCS, Architecture - WS, Infocard, Windows Presentation Foundation