-
Identity prime time with Microsoft Identity Framework “Zermatt”
19 CommentsImplementing authentication and authorization mechanisms for applications is something we do over and over. However designing the identity architecture to be adopted across an enterprise is a more challenging task. Based on my experience, reusability ends up happening at the application level as opposed to the enterprise level. So, designing this architecture requires think about: different trust boundaries, complex access checks and centralized management.
The solution that I’ve been using lately with good results is Security Token Service. Today, standards like WS-Trust and SAML among others are mature enough and technology stacks like WCF or Sun Metro fully support them, making it easier to have an interoperable and strategic infrastructure in place. The Security Token Service provided me with a generic and customizable architecture component that became part of my architecture toolbox.
However, the concepts behind Security Token Services are not trivial to understand, and the value they provide is sometimes hidden under its complexity. The good news is that Microsoft has started to invest on a high-level identity framework that will work on top of CardSpace, WCF and ASP.NET. The new kid on the block is codenamed “Zermatt” and will help approaching the separation of concerns on authentication and authorization; the federated security scenario; tackling real claim-based authorization on both presentation and service layer; and potentially integrate with “cloud” infrastructure like the Internet Service Bus.
Extrapolating the scenario I wrote about in March 2007 we might be able to create something like the following diagram with much less code:
Finally, I recommend you to add Vittorio’s RSS to your feed reader because he will share, as usual, much more info (already started actually).
-
19 Comments:
Leave a comment
Your email address will not be published.
Matias Woloski’s Blog » Blog Archive » Creating Security Token Services with Microsoft Identity Framework (Zermatt) said on August 21, 2008:
[...] of weeks ago I posted about Zermatt and how Security Token Services and Claim Based authorization can help in the [...]
Buy xanax online. said on August 27, 2008:
Xanax during pregnancy….
Generic xanax no prescription. Side effects of xanax….
Xanax. said on August 30, 2008:
Can you buy xanax without a prescription….
Half-life of xanax. Xanax….
Dan Durante said on September 20, 2010:
Chinese herbs for erectile dysfunction…
pump for erectile dysfunction …
Joseph Horr said on September 26, 2010:
Abilify generic…
buy abilify from canada qazxswed…
Claude Bondura said on September 26, 2010:
Dale tiffanyВ® dragonfly table lamp…
Dragonfly table lamp prairie dragonfly table lamp…
Tyrone Laskin said on September 27, 2010:
Timbuktu bags san francisco…
timbuktu bags ewvc…
Travis Mazowieski said on September 29, 2010:
Telescope patio furniture granville new york…
telescope patio furniture outdoor patio furniture…
Timothy Duskey said on October 4, 2010:
Whdbh erectile dysfunction herbs nhito…
wmgje…
Gail Luka said on October 7, 2010:
Gekjfq breakaway lanyard …
DkLmyn…
Lemuel Matrejek said on October 7, 2010:
FkVYb timbuktu bags …
IeBfh…
Josh Foyer said on October 7, 2010:
FJHNl albendazole 400mg …
EgYn…
Hipolito Naegle said on October 7, 2010:
Erectile dysfunction vacuum therapy…
erectile dysfunction medication< …
Cesar Sundseth said on October 7, 2010:
FNHJl Impotence cures …
nEgY…
Nelson Garness said on October 9, 2010:
bunVo natural aphrodisiac for men < iMrNh…
vYtNr…
Phil Sisneroz said on October 9, 2010:
uobVn remedies for impotence …
YrtvN…
Leif Mccarver said on October 13, 2010:
Htjyuvnwzaf…
erectile dysfunction herbs < …
Robert Jervey said on October 13, 2010:
Fzhnjuwaytv…
peg bundy hair costume < …
Jaime Villerreal said on October 13, 2010:
Zjuhfnavwty…
geisha wigs < …