What are claims?

The use of classical identity based access control models, on which authorization decisions are based on the requestor unique identifier, is not adequate for large scale decentralized systems, such as the World-Wide Web. Several aspects contribute to this inadequacy, namely:

Access control policy -When an access request crosses security domains, the identifier of the requestor on [...]

Read Full Post »

Randy Pausch: the online legacy

This page in the New York Times contains a set of links to Prof. Randy Pausch’s “online legacy”, namely:

The “Really Achieving Your Childhood Dreams” talk at CMU
The “The Time Management Lecture” talk at University of Virginia

Highly recommended content.

Read Full Post »

Privacy as an Human Right

Via Light Blue Touch Paper:
 
The European Court of Human Rights said in a judgment on Thursday that Finland had failed to protect the confidentiality of patient information and ordered the state to pay a nurse about 14,000 euros in damages and 20,000 euros in costs.

and
The Strasbourg court found unanimously that the district health authority, by [...]

Read Full Post »

Zermatt

“Zermatt” is name name of a municipality in Switzerland.
Is is also the code name of a Microsoft framework for implementing claims-based identity. There is a nice white paper describing it, authored by Keith Brown.
Currently, “Zermatt” is composed by a managed assembly (Microsoft.IdentityModel.dll) that includes:

A set of classes implementing a new model for claims, claims-based identities [...]

Read Full Post »

WCF and the AsyncPattern property (part 3)

This is the third in a series of posts about the AsyncPattern in WCF.
The previous two posts described the purpose and usage of this property on the service side. The present post addresses the client side.
AsyncPattern at the client side
The AsyncPattern=true is used at the client side to expose an asynchronous programmatic interface to a [...]

Read Full Post »