As a developer of the Microsoft .NET Framework 4.0 based applications, in this chapter you can look forward to learning the ways of:
- Abstracting identity with claims
- Designing the claims-based tokens using Security Assertion Markup Language (SAML)
- Augmenting security with a claims-based architecture
- Implementing federated security using a Security Token Service (STS)
- Implementing Single Sign-On using claims
- Implementing Single Sign-Out in a trust realm
- Configuring certificates for the claims-based applications
Claims-based identity provides a standard way of acquiring identity information by heterogeneous applications to validate service requests within and outside an organization and also over the Web. This chapter is a precursor to the forthcoming chapters on Windows Identity Foundation (WIF), Windows Azure Access Control Services (ACS 2.0), and Active Directory Federation Services v2.0 (AD FS 2.0), all of these being a part of the Microsoft's initiative in the identity and access management using claims. The chapter explores the recipes for abstracting identity with claims and provides an overview of the Security Assertion Markup Language specifications. In addition, this chapter also explores a few claims-based architectures that help augment existing security infrastructure. The chapter is designed towards preparing the readers for the rest of the book.
Tip
Downloading the example code
You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the files e-mailed directly to you.