The Patterns & Practices team has released the first version of the Improving Web Services Security: Scenarios and Implementation Guidance for WCF. It is contains comprehensive guidance on how to design and deploy Web Services using WCF, and should be an invaluable resource for those working in SOA architectures.
It is available for download from the CodePlex site at http://www.codeplex.com/Release/ProjectReleases.aspx?ProjectName=WCFSecurityGuide&ReleaseId=14070.
This guide shows you how to make the most of WCF (Windows Communication Foundation). With end-to-end application scenarios, it shows you how to design and implement authentication and authorization in WCF. Learn how to improve the security of your WCF services through prescriptive guidance including guidelines, Q&A, practices at a glance, and step-by-step how tos. It's a collaborative effort between patterns & practices, WCF team members, and industry experts.
Part I, "Security Fundamentals for Web Services" Part II, "Fundamentals of WCF Security" Part III, "Intranet Application Scenarios" Part IV, "Internet Application Scenarios"
Part I, Security Fundamentals for Web Services
Part II, Fundamentals of WCF Security
Part III - Intranet Application Scenarios
Part IV - Internet Application Scenarios
Questions and Answers