The Hogg Blog

Envisaging the Future by Reflecting on the Past

Browse by Tags

Tagged Content List
  • Blog Post: Windows Identity Foundation (WIF) and Azure AppFabric Access Control Service (ACS) Survival Guide

    My friend Alik just sent me to a pointer to a Survival Guide he is working on for the Azure ACS. The survival guide is intended to help provide a standardized means of organizing topics related to a particular domain such as access control. Looks like a good start for anyone working with ACS. Best part...
  • Blog Post: SOA Symposium: SOA, Software + Services and Cloud Computing

    I am presenting a discussion on SOA, S+S and Cloud computing later today at SOA Symposium . I have included the abstract for the talk and the slides that will be used in the presentation for anyone interested. Organizations evaluating Software + Services and Cloud Computing offerings must first...
  • Blog Post: SOA Symposium: Understanding SOA Security Patterns

    I presented a discussion on SOA Security Patterns at the SOA Symposium today in Rotterdam. The abstract fro the talk is included below and the PPT is attached for anyone interested. Service-oriented solutions are distributed applications and therefore rely on many of the established security controls...
  • Blog Post: SecPAL Parser Updated for VS2008 and F#1.9.6.16

    I finally got around to updating the SecPAL Parser to run on the latest version of Visual Studio and F#. Development experience should be much cleaner now because F# is far better integrated into VS. If you run into any problems please post a note or drop me an email. For more information please see...
  • Blog Post: Agent-Design Patterns for Building Distributed Service Bus Applications

    Another blog that is several months late, but as usual, better late than never. I am currently preparing my presentation for tomorrow's Real World SOA: Microsoft SOA and Business Process Conference I finally made the time to read Danny Garber's paper on Agent-Design Patterns and it was well worth the...
  • Blog Post: Geneva Identity Management Framework

    For anyone who has followed my blogs around developing an STS or writing authorization policies you will be very interested in Kim Cameron 's announcement at PDC of the Geneva Identity Management platform. Genvea includes: Geneva Framework - A .NET framework for writing interoperable, claims aware...
  • Blog Post: patterns & practices Improving Web Services Security: Now Available!

    Over the last 12 months we have had a lot of people who used the Web Service Security - Scenarios, Patterns and Implementation Guidance ask us where the implementation guidance for WCF was. Great news. JD Meier, Jason Taylor, Prashant Bansode and Rob Boucher and the rest of his P&P team have just...
  • Blog Post: Released: Web Service Software Factory: Modeling Edition

    I just saw an announcement from Don that the P&P folks have just released the third version of the Web Service Software Factory - entitled The Web Service Software Factory Modeling Edition. I know these guys have been working hard on this for along time now so this is really great news... And you...
  • Blog Post: SAML STS for WSE 3.0 (reposted)

    Every week or so I get another email asking where the sample code for the SAML STS for WSE 3.0 has been moved to now that GotDotNet GotNuked. It wasn't moved anywhere. So I figured I would repost it here for those that needs i. For those new to this you should also take a look at Pablo Cibraro's blog...
  • Blog Post: Sample declarative access control policy

    In my previous post I mentioned that we have now released a parser for SecPAL that allows policies to be written in a human readable simplified English grammar. I thought it might be worth including an example - based on the scenario that was used in the GridToday post on Access Control in Grid Computing...
  • Blog Post: Parser for SecPAL simplified English grammar now available!

    One of the great strengths of SecPAL is its unique support for multiple representations of a security policy; XML for interoperability; and a simplified English grammar for human readbility. The SecPAL v1.1 Research Release (available from http://research.microsoft.com/projects/secpal) allows SecPAL...
  • Blog Post: Swiss Army Knife of X.509 Certificate Tools

    Anyone who has dealt with X.509 certificates when trying to design, test and deploy secure Web services will know what an ordeal it can be to locate certificates in various cert stores using different cert identifiers, modify security properties of the private key to allow services accounts to sign or...
  • Blog Post: A Java implementation of SecPAL?

    Panos, from the University of Newcastle just dropped me a note to say that he is making progress with his Java based SecPAL implementation - which is very exciting. I noticed that he has moved away from XSB and has decided instead to create his own custom datalog implementation - which is very cool ...
  • Blog Post: The IEEE Computer Security Foundations Conference

    The 20th IEEE Computer Security Foundations conference is underway in Venice at the moment, and our friends from Microsoft Research in Cambridge (Moritz Y. Becker, Cedric Fournet and Andrew D. Gordon) presented the first paper of the conference - based on their formal design for SecPAL. The paper "Design...
  • Blog Post: Writing SecPAL assertions in F#

    I figured I would try to learn F# over this summer - and thought what better way to start than create a couple of SecPAL samples in F#. I thought this might help people that are interested in learning more about F# , or potentially F# users that are interested in learning more about how SecPAL can be...
  • Blog Post: SecPAL - Access Control for Grid Computing Environments

    It has probably been around 9 months since my last blog release where I described the release of our ASMX Service Factory. A lot has obviously happened since then - including the release of both WCF and the WCF Service Factory. So what have I been doing since that time? Well, around 9 months ago I...
Page 1 of 1 (16 items)