Browse by Tags

All Tags » Security   (RSS)
Security Mental Model for Azure
We’ve been exploring Azure on the patterns & practices team for potential security guidance.   To get our heads around it, we’ve had to create a simple view for our team that we could quickly whiteboard or drill into.  We wanted a way Read More...
Posted 17 September 09 12:04 by J.D. Meier | 3 Comments   
Filed under
Cloud Security Frame
I posted a draft of our Cloud Security Frame at Shaping Software .  This frame is especially important because we’re using it to help us map out the Cloud security space for our patterns & practices Cloud Security Guidance project.  It’s Read More...
Posted 20 August 09 01:45 by J.D. Meier | 0 Comments   
Filed under ,
Cloud Security Survey Results
As a follow up to our earlier patterns & practices Cloud Security Survey , here is a quick summary of the results.  Note that the the bulk of our respondents said they spend most of their time in architect roles.  The next biggest buckets Read More...
Posted 18 August 09 03:08 by J.D. Meier | 0 Comments   
Filed under ,
Security Hot Spots
I wrote a post about Security Hot Spots on Shaping Software .  Hot Spots are a way to organize and share information more effectively.    Hot Spots are also a way to turn Pareto's principle (the 80/20 rule) into action.  By focusing Read More...
Posted 09 March 09 10:36 by J.D. Meier | 1 Comments   
Filed under
New Release: patterns & practices WCF Security Guide
Today we released our patterns & practices Improving Web Service security: Scenarios and Implementation Guidance for WCF on MSDN.  Using end-to-end application scenarios, this guide shows you how to design and implement authentication and authorization Read More...
Posted 11 February 09 04:47 by J.D. Meier | 9 Comments   
Filed under , , ,
patterns & practices Security Engineering Cheat Sheet
We posted our patterns & practices Security Engineering Cheat Sheet to our Application Architecture Knowledge Base on CodePlex.   It’s a bird’s-eye view of applying our security techniques to the life cycle.  The techniques and approach Read More...
Posted 20 November 08 07:55 by J.D. Meier | 4 Comments   
Filed under , , ,
patterns & practices Security Engineering
As part of our patterns & practices App Arch Guide 2.0 project , we're consolidating our information on our patterns & practices Security Engineering. Our security engineering approach is simply a collection of security-focused techniques that Read More...
Posted 09 September 08 04:53 by J.D. Meier | 4 Comments   
Filed under ,
Designing an Authentication and Authorization Strategy
What are the key steps to designing an effective authentication and authorization strategy? The keys are knowing your user stores, role stores, and who need to access what or perform which operations. In this post, I share the approaches we've used in Read More...
Posted 25 June 08 07:35 by J.D. Meier | 2 Comments   
Filed under ,
WCF Security Guide is Now Available in HTML
Our guide, patterns & practices Improving Web Services Security:Scenarios and Implementation Guidance for WCF is now available in HTML. Read More...
Posted 19 June 08 03:07 by J.D. Meier | 2 Comments   
Filed under , ,
New Release: patterns & practices WCF Security Guide (BETA)
Today we released our WCF Security guide, patterns & practices Improving Web Services Security: Scenarios and Implementation Guidance for WCF . This is our Microsoft playbook for Windows Communication Foundation (WCF - "Indigo".) It shows you how Read More...
Posted 04 June 08 09:01 by J.D. Meier | 3 Comments   
Filed under , ,
Web Services Security Frame
The key to making principles, patterns, and practices more effective is to have an organizing frame. While working on our patterns & practices WCF Security Guidance Project , we created the Web Services Security Frame for just such a purpose. We use Read More...
Posted 04 June 08 07:27 by J.D. Meier | 4 Comments   
Filed under ,
WCF Security Resources
If you're building Web services or if you're implementing SOA on the Microsoft platform , then you're probably either working with or exploring WCF (Windows Communication Foundation.) When we started our patterns & practices WCF Security Guidance Read More...
Posted 23 May 08 06:45 by J.D. Meier | 7 Comments   
Filed under ,
patterns & practices WCF Security Practices at a Glance Now Available
For this week's release in our patterns & practices WCF Security Guidance project, we released our first version of our WCF Security Practices at a Glance . Practices At a Glance gives you a bird's-eye view of how to perform common tasks. They are Read More...
Posted 09 May 08 09:53 by J.D. Meier | 3 Comments   
Filed under , ,
6 New patterns & practices WCF Security How Tos
We have 6 new How Tos for this week's release of our patterns & practices WCF Security Guidance Project . WCF Security How Tos How To - Perform Input Validation in WCF How To - Perform Message Validation with Schemas in WCF How To - Use basicHttpBinding Read More...
Posted 01 May 08 09:12 by J.D. Meier | 3 Comments   
Filed under , ,
patterns & practices WCF Security Questions and Answers Now Available
What are your key security-related questions with WCF? More importantly, what are the answers? For this week's release of our WCF Security Guidance Project , we posted our WCF Security Q&A (Questions and Answers) to CodePlex. To create the questions Read More...
Posted 25 April 08 03:13 by J.D. Meier | 4 Comments   
Filed under , ,
More Posts Next page »

Search

This Blog

Syndication

Page view tracker