Just a quick note to let everyone know that we have just released a minor update to our SecPAL library. In addition to a couple of minor bug fixes there are two features which I think you are really going to like. The first is an update to our grammar...

One thing that always amazes me as I talk to scientists and researchers at shows like the recent Open Grid Forum or the last Super Computing conference is the extent to which they have managed to extend Eclipse to provide intuitive interfaces to their...

I was asked to present an overview of SecPAL at an Architect Forum focusing on Software + Service in the UK this week. I have posted the presentation entitled "A security policy langauge to support grid on demand" to the releases section on our CodePlex...

In my last post I promised to walk through a demonstration of SecPAL using a scenario that is challenging to implement using current technologies - but simple to implement using SecPAL. As timing would have it, rather than walking through the scenario...

It has probably been around 9 months since my last blog release where I described the release of our ASMX Service Factory. A lot has obviously happened since then - including the release of both WCF and the WCF Service Factory. So what have I been doing...

I just walked past Don's office and noticed him laughing hysterically at the " cubicle song " on YouTube. Turns out this is really great news because that means Don has finished his Hands on Labs... The poor guy really wanted to get these out for our...

Most of our development team was out at Agile 2006 last week - with the exception of Chris Tavares who was heads down with us getting our Service Factory out the door. It sounds like the conference went really well - although no one has been able to answer...

As you may already know we have spent the last couple of weeks (or was it months?) with our heads down polishing our first Web Service Software Factory for release - and last Friday it was finally released. Click here to download. This Web Service...

I noticed that Amazon finally has stock of our Web Service Security Patterns book for anyone who prefers the hard copy over the PDF...

For anyone that has ever designed and implemented a data warehouse on SQL Server you will know there is a dearth of information available - so it is awesome news that Srinath has just announced the release of his Business Intelligence guide for designing...

Over the last couple of months you have seen us talking about the work we are doing for the Service Software Factories for WCF. One overwhelming piece of feedback that we received was that this initiative was going to be great for when you started developing...

Our May community release of the Web Service Software Factory includes some of our coolest work so far (my opinion anyway). We have taken our learning from the Web service security patterns work and worked with the guys in the WCF security team (Mark...

I am not sure how many people have had a chance to download our May CTP of the Web Service Software Factory yet so I thought I would provide some more detail about some of the areas that we cover in our latest release. For this blog posting I am going...

One of our GAT guru's and developers has a summary of the new features here . The biggest ticket at this stage is the Security Guidance package which will hopefully help you get to grips securing your WCF services much faster... I will follow up with...

I just noticed that the WS-I SAWG (Sample Applications Working Group) has finally released a Working Group Draft version of the design document that we have been developing against for more than two years now. See http://www.ws-i.org/ for more information...

With all this talk about Web services, Grid computing and Software as a Service I thought you might be interested in taking a read of this article on the Economics of Distributed Computing by Jim Gray . The paper includes a good overview of the cost...

Don has created some video blogs to help you get started with WCF and the Service Factory. They are a really great way to start learining how to use the Factory. Introduction: http://blogs.msdn.com/donsmith/archive/2006/04/20/579686.aspx Contract...

As you hopefully know by now, the first community release of our Web Service Software Factory is now available at http://practices.gotdotnet.com/projects/svcfactory . Don and Tom provided a good overview as to what a Software Factory is on the GotDotNet...

At this mornings keynote for the Microsoft Canadian Architecture Forum Don Smith made our first public announcement of the project code named Service Baseline Architecture Toolkit. Rather than having me tell you what it is today I thought I would point...

The Canadian Architecture Forum started today in Redmond. Tomorrow myself and Don Smith are presenting a keynote on a subject that we believe will resonate closely with architects and developers designing service oriented applications. More details will...

3 days from now attendees at the upcoming Canadian Architecture Forum hear the first public annoucnement of a project that will change the way you develop serivce oriented applications. 5 days from now we will have our first public beta for you to play...

I have put some notes together from the sessions that I went to at RSA. Feel free to take a look / comment or add info about additional sessions... http://blogs.msdn.com/thehoggblog/articles/544791.aspx I also wanted to thank everyone that attended...

Must see TV for anyone whose manager gives you a hard time when you mention spending time working on threat models or performing security reviews. http://www.thecoderoom.com/vegas/ . It casts our friends Keith Brown, John Viega, Rick Samona and Frank...

How many times have you had a security solution / process forced upon you that for whatever reason is unworkable - forcing you you to work around it? The classic example is of course where tough password policies are implemented that make it impossible...

If you haven't already played with the Security Policy Analyser that shipped with WSE 3.0 - take a look. It rocks! Amongst other things it performs static validations to catch vulnerabilities such as: Use of test root certificates Leaving “detailed...