InfoCard2
   HOME

TheInfoList



Click Here for Items Related To - InfoCard2
OR:
InfoCard2 on:   [Wikipedia]   [Google]   [Amazon]

Windows CardSpace ( codenamed InfoCard) is a discontinued identity selector app by Microsoft. It stores references to digital identities of the users, presenting them as visual information cards. CardSpace provides a consistent UI designed to help people to easily and securely use these identities in applications and web sites where they are accepted. Resistance to phishing attacks and adherence to Kim Cameron's "
7 Laws of Identity 7 (seven) is the natural number following 6 and preceding 8. It is the only prime number preceding a cube. As an early prime number in the series of positive integers, the number seven has greatly symbolic associations in religion, mythology, s ...
" were goals in its design. CardSpace is a built-in component of Windows 7, and has been made available for Windows XP, Windows Server 2003, and Windows Vista as part of the
.NET Framework The .NET Framework (pronounced as "''dot net"'') is a proprietary software framework developed by Microsoft that runs primarily on Microsoft Windows. It was the predominant implementation of the Common Language Infrastructure (CLI) until bein ...
3.x package.


Overview

When an information card-enabled application or website wishes to obtain information about the
user Ancient Egyptian roles * User (ancient Egyptian official), an ancient Egyptian nomarch (governor) of the Eighth Dynasty * Useramen, an ancient Egyptian vizier also called "User" Other uses * User (computing), a person (or software) using an ...
, it requests a particular set of claims. The CardSpace UI then appears, switching the display to the CardSpace service, which displays the user's stored identities as visual cards. The user selects a card to use, and the CardSpace software contacts the issuer of the identity to obtain a
digitally signed A digital signature is a mathematical scheme for verifying the authenticity of digital messages or documents. A valid digital signature, where the prerequisites are satisfied, gives a recipient very high confidence that the message was created b ...
XML token that contains the requested information. CardSpace also allows users to create ''personal'' (also known as ''self-issued'') information cards, which can contain one or more of 14 fields of identity information such as full name and address. Other transactions may require a ''managed'' information card; these are issued by a third-party ''identity provider'' that makes the claims on the person's behalf, such as a bank, employer, or a government agency. Windows CardSpace is built on top of the Web services protocol stack, an open set of XML-based protocols, including WS-Security,
WS-Trust WS-Trust is a WS-* specification and OASIS standard that provides extensions to WS-Security, specifically dealing with the issuing, renewing, and validating of security tokens, as well as with ways to establish, assess the presence of, and broker t ...
,
WS-MetadataExchange WS-MetaDataExchange is a web services protocol specification, published by BEA Systems, IBM, Microsoft, and SAP. WS-MetaDataExchange is part of the WS-Federation roadmap; and is designed to work in conjunction with WS-Addressing, WSDL and WS-Pol ...
and
WS-SecurityPolicy WS-SecurityPolicy is a web services specification, created by IBM and 12 co-authors, that has become an OASIS standard as of version 1.2. It extends the fundamental security protocols specified by the WS-Security, WS-Trust and WS-SecureConversatio ...
. This means that any technology or platform that supports these protocols can integrate with CardSpace. To accept information cards, a
web developer A web developer is a programmer who develops World Wide Web applications using a client–server model. The applications typically use HTML, CSS, and JavaScript in the client, and any general-purpose programming language in the server. is used f ...
needs to declare an HTML <OBJECT> tag that specifies the claims the website is demanding and implement code to decrypt the returned token and extract the claim values. If an identity provider wants to issue tokens, it must provide a means by which a user can obtain a managed card and provide a Security Token Service (STS) which handles
WS-Trust WS-Trust is a WS-* specification and OASIS standard that provides extensions to WS-Security, specifically dealing with the issuing, renewing, and validating of security tokens, as well as with ways to establish, assess the presence of, and broker t ...
requests and returns an appropriate encrypted and signed token. During the 2000s, identity providers that didn't wish to build STS could obtain one from a variety of vendors, including PingIdentity, BMC,
Sun Microsystems Sun Microsystems, Inc. (Sun for short) was an American technology company that sold computers, computer components, software, and information technology services and created the Java programming language, the Solaris operating system, ZFS, the ...
, Microsoft, or
Siemens Siemens AG ( ) is a German multinational conglomerate corporation and the largest industrial manufacturing company in Europe headquartered in Munich with branch offices abroad. The principal divisions of the corporation are ''Industry'', '' ...
. Because CardSpace and the identity metasystem upon which it is based are token-format-agnostic, CardSpace did not compete directly with other Internet identity architectures like OpenID and SAML. These three approaches to identity can be seen as complementary, because during the 2000s, information cards could be used today for signing into OpenID providers, Windows Live ID accounts, and SAML identity providers. IBM and
Novell Novell, Inc. was an American software and services company headquartered in Provo, Utah, that existed from 1980 until 2014. Its most significant product was the multi-platform network operating system known as Novell NetWare. Under the lead ...
planned to support the Higgins trust framework to provide a development framework that includes support for information cards and the Web services protocol stack, thus including CardSpace within a broader, extensible framework also supporting other identity-related technologies, such as SAML and OpenID.


Release

Microsoft initially shipped Windows CardSpace with the
.NET Framework 3.0 Microsoft started development on the .NET Framework in the late 1990s originally under the name of Next Generation Windows Services (NGWS). By late 2001 the first beta versions of .NET 1.0 were released. The first version of .NET Framework was ...
, which runs on Windows XP, Windows Server 2003, and Windows Vista. It is installed by default on Windows Vista as well as Windows 7 and is available as a free download for XP and Server 2003 via Windows Update. An updated version of CardSpace shipped with the
.NET Framework 3.5 Microsoft started development on the .NET Framework in the late 1990s originally under the name of Next Generation Windows Services (NGWS). By late 2001 the first beta versions of .NET 1.0 were released. The first version of .NET Framework was r ...
. The new Credential Manager in Windows 7 uses Windows CardSpace for the management and storage of saved user credentials.


Discontinuation

On February 15, 2011, Microsoft announced that Windows CardSpace 2.0 would not be shipped. Microsoft later worked on a replacement called U-Prove.


See also

* Information Card *
Higgins project Higgins is an open-source project dedicated to giving individuals more control over their personal identity, profile and social network data. The project is organized into three main areas: #Active Clients - An active client integrates with a br ...
* Shibboleth (Internet2) * Identity management systems *
Windows Hello Windows 10 is a major release of Microsoft's Windows NT operating system. It is the direct successor to Windows 8.1, which was released nearly two years earlier. It was released to manufacturing on July 15, 2015, and later to retail on Ju ...


References


Further reading

* * * *
Microsoft Open Specification Promise
May 2007.


External links

;Software development
Windows CardSpace on .NET Framework documentation site
– Developer articles and technical documentation on Windows CardSpace
Microsoft Information Card Kit for ASP.NET 2.0
– ASP.NET Relying Party (RP) code to support CardSpace
Microsoft Information Card Kit for HTML
– platform-independent JavaScript and CSS code that detects if the client can use i-cards and provides the corresponding UI support * Open sourc
Ruby
RP code for accepting information cards * Open sourc
Java
RP code for accepting information cards * Open sourc
C and PHP
RP code for accepting cards * Open sourc
C
RP code for accepting information cards and
STS STS, or sts, may refer to: Medicine * Secondary traumatic stress, a condition which leads to a diminished ability to empathize * Sequence-tagged site, a gene-reference in genomics * Soft-tissue sarcoma * Staurosporine, an antibiotic * STS (gen ...
code for managed i-cards * Open sourc
PHP
Security Token Service code for managed cards * Open sourc
C#
STS code for managed information cards ;Identity selectors
Digital Me
– an open-source Identity Selector for Linux and Mac OS X
A plug-in
for Apple's
Safari A safari (; ) is an overland journey to observe wild animals, especially in eastern or southern Africa. The so-called "Big Five" game animals of Africa – lion, leopard, rhinoceros, elephant, and Cape buffalo – particularly form an importa ...
implementing an Information Card identity selector
A plug-in
for Firefox to activate CardSpace and other identity selectors ;Blogs
''Kim Cameron's Identity Weblog''
– Blog from Microsoft's architect for identity
''Mike Jones: Self-Issued''
– Blog on CardSpace, cards, and digital identity from Microsoft's Director of Identity Partnerships
''Vittorio Bertocci'' (archived)
– Blog on designing and developing with CardSpace from Microsoft's architect evangelist for Windows Server 2008
''Claim-Based Identity Blog'' (archived)
– Blog on CardSpace from its development team {{Windows Components
CardSpace Windows CardSpace ( codenamed InfoCard) is a discontinued identity selector app by Microsoft. It stores references to digital identities of the users, presenting them as visual information cards. CardSpace provides a consistent UI designed to ...
CardSpace Windows CardSpace ( codenamed InfoCard) is a discontinued identity selector app by Microsoft. It stores references to digital identities of the users, presenting them as visual information cards. CardSpace provides a consistent UI designed to ...
Web services Federated identity Discontinued Windows components