Home » Archive

Articles tagged with: Digital Identity

Digital Identity »

[1 Nov 2007 | 3 Comments | ]

Continuing the discussion on DisplayTokens [LINK] :
A number of you have emailed me directly and some have commented publicly with some thoughtful insight and I thank you for that. Vittorio has written a very thoughtful and detailed response on his own blog [LINK].
Going back to my original question which was "Does the DisplayToken violate the First Law of Identity?" I am not convinced it does. What I think I am discovering is that the First Law of Identity is not necessarily enforced.
In Kim’s words[LINK]
"Those of us who …

Digital Identity »

[29 Oct 2007 | 3 Comments | ]

I have been following along with the Identity story for some time now.
Cardspace as an Identity selector supports two basic models;

Self-Issued Cards in which essentially you act as your own security token service and
Managed cards – in which a trusted third party acts as Identity Provider making assertions around your identity.

I have seen many examples leveraging self-issued cards but relatively few incorporating managed cards. There is a sample STS available on the http://cardspace.netfx3.com website but due to the complex nature of it I’ve found …

Digital Identity, Things I've Made »

[25 Oct 2006 | One Comment | ]

If you’ve downloaded the Simple STS sample from the NetFX3 website over here:
http://cardspace.netfx3.com/files/folders/samples-july-ctp/entry5204.aspx
You’ll find the sample does not run out of the box. When generating managed cards you get the error "Can’t find claim specification for [http://schemas.microsoft.com/ws/2005/05/identity/claims/givenname]"
This is because CardSpace claims have recently been updated to use the xmlsoap.org namespace. Update any references you find to http://schemas.microsoft.com to http://schemas.xmlsoap.org for the fix.
Here’s what the updated FabrikamUP.ini file should look like:
-====================== CUT BELOW ===============================-
[CARD]
; type is one of UserNamePassword,KerberosAuth,SelfIssuedAuth,SmartCard,
TYPE=UserNamePassword
[Details]
Name=My Card (U/P backed)
ID=http://www.fabrikam.com/card/unpw/randomnnumber123
version=1
image=imagesfabrikam.jpg
[Issuer]
Name=Fabrikam Auto Group
Address=http://www.fabrikam.com:3074/sts
MexAddress=https://www.fabrikam.com:4074/sts/mex
PrivacyPolicy=http://www.fabrikam.com/PrivacyPolicy.xml
; certificate should be either …

Digital Identity »

[26 Sep 2006 | 3 Comments | ]

Setting up Infocard/ Cardspace Today I’m going to explain how to enable accepting CardSpace cards (formerly known as Infocards) on your website. This is a topic that took a little figuring out and navigating various documentation etc. so I figured I’d write it down as I’ll probably forget how to do it and need this in the future.
1) Enable SSL on your page – The Infocard ID selector only works for pages running under SSL. This means you need to purchase a certificate and …

Digital Identity »

[25 Sep 2006 | No Comment | ]

I am doing lot of work with Cardspace and Infocard.
If you are trying to get the Infocard Labs working from the Vista Beta2 release of Infocard (earlier this year) with the latest June CTP of the .NET framework you’ll find the code doesn’t work with the latest CTP. This is due to a number of breaking changes that were implemented in the latest CTP.
You’ll find a list of these here: Breaking changes.
I found the most important one was the change from System.ServiceModel.Identity to System.ServiceModel.EndpointIdentity.
That should keep all …