Software Engineering, Project Management, and Effectiveness
For this week's release in our patterns & practices WCF Security Guidance project, we released our first version of our WCF 3.5 Security Guidelines. Each guideline is a nugget of what to do, why, and how. The goal of the guideline format is to take a lot of information, compress it down, and turn insight into action.
The downside is that it's tough to create prescriptive guidelines that are generic enough to be reusable, but specific enough to be helpful. The upside is that customers find the guidelines help them cut through a lot of information and take action. We contextualize the guidelines as much as we can, but ultimately you're in the best position to do the pattern matching to find which guidelines are relevant for your scenarios, and how you need to tailor them.
Here's a snapshot of the guidelines, but you can see our security guidelines explained at our WCF Security Guidance project site.
CategoriesOur WCF Security guidelines are organized using the following buckets:
Auditing and Logging
Impersonation and Delegation
My Related Posts
PingBack from http://www.travel-hilarity.com/airline_travel/?p=3827
That is fantastic set of guidelines. Very timely just as WCF becomes mainstream with my customers. I expect it to help me a lot providing better services to my customers and making them Raving Fans, no less.
Looking forward to seeing the How-To's.
This is a digest of WCF Security resources I was collecting for some time. Drop me a comment in case
" For this week's release in our patterns & practices WCF Security Guidance project , we released
What are your key security-related questions with WCF? More importantly, what are the answers? For this
We have 5 new How Tos for this week's release of our patterns & practices WCF Security Guidance Project
It would be really nice if this whole thing were available as a download (PDF or MDI, for example). I realize it is being updated constantly, but it would be very helpful to have in a printed form.
Clint - I agree ;)
We're working towards a guide. We're starting the up front part of the guide this week.
For this week's release in our patterns & practices WCF Security Guidance project, we released our
This is a digest of WCF Security resources I was collecting for some time. Drop me a comment in case it is useful.