Monthly Archives: April 2007

UAC Manifest Support in "Orcas"

Adding UAC manifests to apps built with VS2005 is kind of a hassle (and does not really work in all situations). I was pleased to spot this new properties dialog in VS “Orcas”:    

Posted in Uncategorized | Leave a comment

Token Decryption Service for CardSpace

Web Applications that want to decrypt CardSpace tokens need read access to the SSL private key. But you would increase your attack surface tremendously if you directly grant this access to the worker process account of your application. I wrote … Continue reading

Posted in Uncategorized | Leave a comment

UAC Demo and Helpers

As a follow up to the UAC article I wrote some weeks ago, I compiled some demos and a helper library. The demos show how applications behave given different manifest settings and the helper includes some useful methods like: Find … Continue reading

Posted in Uncategorized | Leave a comment

TechDays IIS7 Talk

Danke an alle Teilnehmer der TechDays. Es war ein schöne Konferenz und traumhaftes Wetter. Ein paar der Demos aus meinem IIS7 Talk findet Ihr hier.  

Posted in Uncategorized | Leave a comment

CardSpace, PPIDs and UniqueIDs – my Conclusion

In the last post I described the unique values you can find in a card, how they are (roughly) generated and how the certificate of the application (relying party) influences this generation. Now which value do you use to uniquely … Continue reading

Posted in Uncategorized | Leave a comment

InfoCards and Identity Stability

InfoCards don’t have the notion of a username in the classic sense. That means you need to find some other unique value to “recognize” your users. Two unique values are created whenever you send a card to an application for … Continue reading

Posted in Uncategorized | Leave a comment

Wrap-up of HTTP.SYS Discussion

After my post about punching holes in HTTP.SYS – there was some discussion going on (on this blog, on Keith’s blog and in a number of private email conversations). Let me wrap this up. Kenny commented on my post: “I … Continue reading

Posted in Uncategorized | Leave a comment