The Fictioning Horror Sale
 
 

Recently Viewed clear list


Original Essays | September 4, 2014

Edward E. Baptist: IMG The Two Bodies of The Half Has Never Been Told: Slavery and the Making of American Capitalism



My new book, The Half Has Never Been Told: Slavery and the Making of American Capitalism, is the story of two bodies. The first body was the new... Continue »
  1. $24.50 Sale Hardcover add to wish list

spacer
Qualifying orders ship free.
$5.50
Used Trade Paper
Ships in 1 to 3 days
Add to Wishlist
Qty Store Section
1 Local Warehouse Software Engineering- General

Guide to Claims-Based Identity and Access Control

by

Guide to Claims-Based Identity and Access Control Cover

 

Synopses & Reviews

Publisher Comments:

As systems have become interconnected and more complicated, programmers needed ways to identify parties across multiple computers. One way to do this was for the parties that used applications on one computer to authenticate to the applications (and/or operating systems) that ran on the other computers. This mechanism is still widely used-for example, when logging on to a great number of Web sites. However, this approach becomes unmanageable when you have many co-operating systems (as is the case, for example, in the enterprise). Therefore, specialized services were invented that would register and authenticate users, and subsequently provide claims about them to interested applications. Some well-known examples are NTLM, Kerberos, Public Key Infrastructure (PKI), and the Security Assertion Markup Language (SAML). Most enterprise applications need some basic user security features. At a minimum, they need to authenticate their users, and many also need to authorize access to certain features so that only privileged users can get to them. Some apps must go further and audit what the user does. On Windows®, these features are built into the operating system and are usually quite easy to integrate into an application. By taking advantage of Windows integrated authentication, you don't have to invent your own authentication protocol or manage a user database. By using access control lists (ACLs), impersonation, and features such as groups, you can implement authorization with very little code. Indeed, this advice applies no matter which OS you are using. It's almost always a better idea to integrate closely with the security features in your OS rather than reinventing those features yourself. But what happens when you want to extend reach to users who don't happen to have Windows accounts? What about users who aren't running Windows at all? More and more applications need this type of reach, which seems to fly in the face of traditional advice. This book gives you enough information to evaluate claims-based identity as a possible option when you're planning a new application or making changes to an existing one. It is intended for any architect, developer, or information technology (IT) professional who designs, builds, or operates Web applications and services that require identity information about their users.

Book News Annotation:

Intended for software designers familiar with ASP.NET, WCF, and Visual C#, this guide explains when and how to use Windows Identity Foundation and Active Directory Federation Services v2 in the context of corporate intranets, Web applications, Web services, and multiple partners. Appendices show in detail the message sequences for the passive and active client scenarios and list the digital certificates used in claims-based applications. Annotation ©2010 Book News, Inc., Portland, OR (booknews.com)

About the Author

Dominick Baier splits his time between being an independent security consultant and an instructor for DevelopMentor - teaching and authoring the ASP.NET and the .NET security curriculum. He has a degree in computer science (German Diplom Ingenieur), is a certified BS7799/ISO17799 Lead Auditor and speaks at various conferences (WinDev, DevWeek, ADC) about application security. When not teaching he spends his time researching security, doing audits and penetration tests and helps other developers around the world to build more secure applications. Dominick maintains a security blog at http://www.leastprivilege.com.

Vittorio Bertocci is a Senior Architect Evangelist in the Windows Azure Platform Evangelism team with Microsoft® Corp. After four years in the Italian Microsoft Consulting Services, Vittorio moved to the U.S. headquarters in Redmond, where he has spent the past four years helping customers deploy solutions based on identity and access management, SOA, and services. He currently focuses on all things identity, working with the developer's community, large enterprises and partners. Vittorio is a published author; he frequently speaks about identity at international conferences and maintains a popular blog at http://blogs.msdn.com/vbertocci.

Keith Brown is a co-founder of Pluralsight, a premier Microsoft® .NET training provider. Keith is the author of Pluralsight's Applied .NET Security course as well as several books, including The .NET Developer's Guide to Windows® Security, which is available both in print and on the Web. Learn more at www.pluralsight.com/keith

Matias Woloski is an Enterprise Architect at Southworks S.R.L. He's been involved in software development for 6 yeasr. Currently, he's working with the patterns & practices team at Microsoft® in a Scrum-driven project. He maintains a blog at http://blogs.southworks.net/mwoloski/

Eugenio Pace is a Senior Program Manager in the patterns & practices group at Microsoft®. He is responsible for developing guidance for migrating and building application for the Windows Azure® platform and for Windows® Phone 7. Before that he worked on architecture guidance for claims based identity and identity federation. You can find his blog here: http://blogs.msdn.com/eugeniop and on twitter @eugenio_Pace.

Table of Contents

ForewordForewordPrefaceAcknowledgmentsChapter 1: An Introduction to ClaimsChapter 2: Claims-Based ArchitecturesChapter 3: Claims-Based Single Sign-On for the WebChapter 4: Federated Identity for Web ApplicationsChapter 5: Federated Identity for Web ServicesChapter 6: Federated Identity with Multiple PartnersUsing FedutilMessage SequencesIndustry StandardsCertificatesGlossary

Product Details

ISBN:
9780735640597
Author:
Baier, Dominick
Publisher:
Microsoft Press
Author:
Woloski, Matias
Author:
Brown, Keith
Author:
Bertocci, Vittorio
Author:
Pace, Eugenio
Subject:
Software Development & Engineering - Systems
Subject:
Programming - Systems Analysis & Design
Subject:
Software Engineering-Systems Analysis and Design
Subject:
access control;claims-based;microsoft;windows
Copyright:
Edition Description:
Trade Paper
Series:
Patterns & Practices
Publication Date:
20100431
Binding:
TRADE PAPER
Language:
English
Illustrations:
Y
Pages:
196
Dimensions:
9.10x7.40x.41 in. .78 lbs.

Related Subjects

Computers and Internet » Internet » Application Development
Computers and Internet » Software Engineering » General
Computers and Internet » Software Engineering » Systems Analysis and Design
Health and Self-Help » Health and Medicine » Medical Specialties

Guide to Claims-Based Identity and Access Control Used Trade Paper
0 stars - 0 reviews
$5.50 In Stock
Product details 196 pages Microsoft Press - English 9780735640597 Reviews:
spacer
spacer
  • back to top
Follow us on...




Powell's City of Books is an independent bookstore in Portland, Oregon, that fills a whole city block with more than a million new, used, and out of print books. Shop those shelves — plus literally millions more books, DVDs, and gifts — here at Powells.com.