CardSpace extension for FireFox!

Check out my post at  and the announcement at   g   Garrett Serack | Program Manager |Federated Identity Team | Microsoft Corporationblog:


Fear The Cowboy

I’ve started a new blog, that is more encompassing of everything I do, not just my CardSpace duties. You can find it at g   Garrett Serack | Program Manager |Federated Identity Team | Microsoft Corporationblog:

ASP.NET 1.1 Token Decryption

A funny thing happened a while back… I had a request from Scott Hanselman to decrypt and consume a security token created by Windows CardSpace, but do it on ASP.NET 1.1. Well, having written the code to do that on .NET 3.0, I figured, heck, how hard could that be… sure, the certificate and decrpytion might be a…


Comments, Suggestions, Features and WHAT THE HECK WAS THAT!?

Hopefully, that got your attention. We’re starting to sketch out designs for the next version of CardSpace.  I’m starting a thread on our forums and makin’ it sticky so we can continue a dialog around new features. Now, I realize that CardSpace ain’t even out the door yet, but the planning is beginning. I can’t…

.NET 3.0 RC1 Released!

The .NET 3.0 Framework Release Candidate 1 has been uh, released! I’ll be posting a “New for CardSpace in RC1” document tomorrow, and in the next couple of days, I’ll post the samples revised as well. Get it here: Note: This is a pre-RTM release. Therefore, do not install these builds on machines you…

Simple STS Update

A couple of minor glitches in the Simple STS Sample:   Errata #1: if you downloaded the sample before 8:30PM PST AUG 21 2006, there is one little error: In the Sample.htm file in the website\cardspace directory, the object tag should read: <object type=”application/x-informationcard” name=”_xmlToken”>    <param name=”tokenType” value=”urn:oasis:names:tc:SAML:1.0:assertion” />    <param name=”requiredClaims” value=”” /></object>   Errata…


New Windows CardSpace Sample: SimpleSTS

I’ve added a new Simple STS sample to the Windows CardSpace community website at : . This should let everyone start building managed card support with a proof-of-concept STS. g Garrett Serack | Program Manager |Federated Identity Team | Microsoft Corporationblog:


Losing our Anonymity?

I originally wrote this as a comment to Pamela’s blog, but I thought it was interesting enough to stand alone. Quoting from her post: The AOL search data scandal is a welcome wakeup call. It is useful to remember that even a common, theoretically harmless internet activity might be used to correlate between normally segmented…

New Sample: Decrypting a Security Token

You can find a new CardSpace sample that shows the nitty-gritty of decrypting a SecurityToken: This contains the code for a new Token class, (derived from TokenHelper) which exposes a few more features, to be discussed in the future. Additonally, The decryption itself has been simplified, and can be done without .NET 3.0 (however,…

ScintillaNET: Trolling for Features

I’ve got several people interested in contributing to ScintillaNET, now what we need to do is build a roadmap.   I need to know what kinds of things that we should be putting into this next version, (including things in older versions, or stuff you may have coded yourself).   I’m only a couple days…