SEARCH
0-9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
PARTS:
Part 9
Part 10
Part 11
Part 12
Part 13
Part 14
Part 15
Part 16
Part 17
Part 18
Part 19
Part 20
Part 21
Part 22
Part 23
Part 24
Part 25
Prev | Current Page 244 | Next

Vittorio Bertocci, Garrett Serack, Caleb Baker

"Understanding Windows CardSpace: An Introduction to the Concepts and Challenges of Digital Identities"

If at some point
in the future a new authentication technology is released, and a
suitable token pro?¬?le is de?¬?ned, the new technology can be
seamlessly integrated into the system without requiring any major
change. This arrangement effectively decouples the security
WS-Security provides
existing cryptographic
technologies with a
framework for
securing elements
of SOAP messages
The strength of WSSecurity
is in the
generality of the
idea of a security
token
148 Hints Toward a Solution
capabilities of the protocol from the technologies actually available,
allowing users of different technologies to speak a common
tongue while still having a return on their investment on
the platform of choice. Those are exactly the good properties we
indicated as key requirements for the Identity Metasystem, at a
lower abstraction level. As discussed in the following sections,
the WS-Security token occupies a pivotal role in realizing an
architecture coherent with the vision of the Identity Metasystem
described thus far.
WS-Security Tokens and Token Pro?¬?les
At the time of this writing, the current version of WS-Security is 1.1. It is a standard
rati?¬?ed by OASIS. OASIS lists the following standard ?¬?ve different token
pro?¬?les:
 Username token pro?¬?le
 SAML token pro?¬?le
 X.


Pages:
232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256
Beginners Guide to SQL Server Integration Services Using Visual Studio 2005 (page 146) Pro ASP.NET 3.5 Server Controls and AJAX Components (page 219) Practical Reporting with Ruby and Rails (page 292)