Just a quick note to let everyone know that we have just released a minor update to our SecPAL library. In addition to a couple of minor bug fixes there are two features which I think you are really going to like. The first is an update to our grammar - making it much clearer what conditions and constraints are. The second (which was actually a bug fix) is that our graphical proof graphs now work.
The diagram below shows an example of a (very simple) proof graph which graphically demonstrates the chain of deducations supporting an authorization decision. This is of course very valuable information for your audit logs to support requirements such as compliance etc.
Anyway, you might find the following links interesting:
- The download is available from here: http://research.microsoft.com/projects/secpal
- Summary of changes: http://www.codeplex.com/secpal/Wiki/View.aspx?title=ResearchRelease1.1&referringTitle=Home
- Summary of how to write to the event log, use the event log viewer, and the graphical proof graph viewer: http://www.codeplex.com/secpal/Thread/View.aspx?ThreadId=11187
I have also been working on a couple of F# samples to demonstrate how to call SecPAL from F#, which I will post those in the next day or two. These will also include examples of the new grammar etc.