Microsoft builds Web services TrustBridge

Microsoft has announced software that will allow organisations to share data with business partners and customers more easily.

Microsoft has announced software that will allow organisations to share data with business partners and customers more easily.

The software, codenamed TrustBridge and scheduled for release next year, enables companies using the Windows operating system to share user identities across business boundaries, Microsoft said.

A provider of human resources services, for example, could give its customers access to its systems by sharing user identity data.

Users of Microsoft's Active Directory service will be able to use TrustBridge to recognise and share user identities with other organisations running Windows or any other identity infrastructure that supports Kerberos 5.0.

Kerberos is a standard security protocol developed at the Massachusetts Institute of Technology.

TrustBridge springs from Web services security work Microsoft has been doing with IBM and VeriSign. The companies developed a specification called WS-Security, which describes how to exchange secure and signed messages in a Web services environment.

In addition to TrustBridge, Microsoft announced that its Visual Studio .Net developer package will be updated later this year to include support for digital signatures and encryption for messages sent using Simple Object Access Protocol (Soap) following the WS-Security specification.

Moreover, .Net Passport, Microsoft's authentication service for the Web, will next year support Soap over Hypertext Transfer Protocol (HTTP), Kerberos and the WS-Security specifications. This will enable .Net passport to federate with TrustBridge and other authentication systems employing WS-Security, Microsoft said.

.Net Server, scheduled to be available next year, will support Passport through Active Directory and the Internet Information Service.

Competing against Microsoft's network identity model is the Liberty Alliance, spearheaded by Microsoft rival Sun Microsystems.

The Liberty Alliance plans to release the first phase of its specification in coming months. This specification will create a federated network identity and authentication sharing mechanism, according to the Liberty Alliance.

The idea behind Web services is to allow companies to link their applications to the disparate systems of partners and customers, regardless of the application type or vendor.

Technologies enabling this include Extensible Markup Language (XML), Soap and Universal Description, Discovery and Integration (UDDI).

Microsoft has been pushing Web services as an important part of its .net initiative. The company was part of a group of industry players that formed the Web Services Interoperability Organisation earlier this year.

The consortium seeks to make sure that vendors developing Web services products implement standards in the same way.

Read more on Web software

New Liberty Alliance president: Open specs work George Goodman, the director of Intel's Visualization and Trust Lab, was recently elected the new president of the Liberty Alliance Project's management board. The Liberty Alliance Project is an organization working to create open standards and business guidelines for federated identity management and Web services. The alliance has recently added some big names to its list of members -- IBM, Intel and Oracle signed up last year -- and has progressed significantly on many fronts since its founding in 2001. In this interview, Goodman looks at some of the alliance's milestones, including work done on the Identity Federation Framework (ID-FF), which has been broadly used in real world implementations. He looks at Liberty's "conformance approach," which allows adopting organizations to determine a product's compliance with the Liberty specs, and also discusses the integration of the ID-FF into the much broader SAML (Security Assertion Markup Language) 2.0 release, coming out in early 2005.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close