1 Hyderabad Techies Microsoft Developer User Group - Hyderabad Introduction to.NET Services “ Sharing is our Passion “

Slides:



Advertisements
Similar presentations
Securing, Connecting, and Scaling in Windows Azure Name Title Microsoft Corporation.
Advertisements

Clemens Vasters Technical Lead, Service Bus.NET Services BB12.
Web Service Architecture
John Shewchuk Dennis Pilarinos Microsoft Corporation.
A Java Architecture for the Internet of Things Noel Poore, Architect Pete St. Pierre, Product Manager Java Platform Group, Internet of Things September.
Don’t Let Anybody Slip into Your Network! Using the Login People Multi-Factor Authentication Server Means No Tokens, No OTP, No SMS, No Certificates MICROSOFT.
 Clemens Vasters Service Bus Technical Lead Microsoft Corporation BB38.
.Net services Azure Services Platform. Introduction to Microsoft.Net Services.Net Service Bus.Net Access Control Service.Net WorkFlow Service Tools.
Connecting Cloud and On-Premises Applications Yousef A. Khalidi Distinguished Engineer Microsoft Corporation.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Getting Started with WCF Windows Communication Foundation 4.0 Development Chapter 1.
Christian Weyer thinktecture.
Michael Stiefel Reliable Software, Inc. Microsoft Corporation
Datacenter LOB web service LOB app Partner Mobile Device.
 Services Based Hosting – NOT Platform-As-A-Service  Services are accessed via Web standard protocols (HTTP/S, Rest, Atom, etc.)  Compute Hosting 
Justin Smith
Maggie Myslinska (Program Manager) Microsoft Corporation SESSION CODE: ASI204.
Azure Services Platform Update James Conard Sr. Director Developer & Platform Evangelism Microsoft Corporation.
Aaron Skonnard & Keith Brown Cofounders, Pluralsight SESSION CODE: ASI308 Programming AppFabric: Moving.NET to the Cloud.
Bizfss File Sync and Sharing Solution, Built on Microsoft Azure, Allows Businesses to Sync, Share, Back Up Using Their Own Cloud Storage MICROSOFT AZURE.
1 Azure ™ Services Platform Microsoft.NET Services A Closer Look Clemens Vasters Technical Lead Microsoft Corporation.
1 Azure ™ Services Platform Microsoft.NET Services An Introduction Clemens Vasters Technical Lead Microsoft Corporation.
We have a little game to play at the start Chris J.T. Auld Director, Intergen Limited New Zealand (Go All Blacks!)
 Justin Smith Sr. Program Manager Microsoft Corporation BB28.
Smart Syncing: Travelers Get News, Information, and Entertainment along with Free Internet via WiFi COMPANY PROFILE: SIENN With a team across Europe, SIENN.
Windows Azure poDRw_Xi3Aw.
Andrew J. Hewatt, Gayatri Swamynathan and Michael T. Wen Department of Computer Science, UC-Santa Barbara A Case Study of the WS-Security Framework.
Service Bus Client Service ? Machine Firewall Network Firewall Network Address Translation Dynamic IP SenderReceiver.
Zentera Guardia Fabric ™ Securely Connects Client-Server Apps between Microsoft Azure, Enterprise Datacenters & Other Public Clouds MICROSOFT AZURE ISV.
Lect 8 Tahani al jehain. Types of attack Remote code execution: occurs when an attacker exploits a software and runs a program that the user does not.
Aaron Skonnard Cofounder, Pluralsight SOA316 .NET Services Extending.NET technologies to the cloud Open and accessible REST, SOAP, RSS, AtomPub, …
Clemens Vasters Principal Technical Lead Microsoft SOA319.
Simon Davies Microsoft Global reach Ease of provisioning Business agility Deployability & manageability Security & Privacy Customisability.
Azure Active Directory Uday Hegde 2016 Redmond Summit | Identity Without Boundaries May 26, 2016 Group Program Manager, Azure AD
The Derivitec Risk Portal Provides Powerful, Cost-Effective Risk Management Solutions, Powered by Azure, that Deploy in Minutes MICROSOFT AZURE ISV PROFILE:
AuraPortal Cloud Helps Empower Organizations to Organize and Control Their Business Processes via Applications on the Microsoft Azure Cloud Platform MICROSOFT.
Developing IoT endpoints with mbed Client
DocFusion 365 Intelligent Template Designer and Document Generation Engine on Azure Enables Your Team to Increase Productivity MICROSOFT AZURE APP BUILDER.
Introduction to Windows Azure AppFabric
Vidcoding Introduces Scalable Video and TV Encoding in the Cloud at an Affordable Price by Utilizing the Processing Power of Azure Batch MICROSOFT AZURE.
Trial.iO Makes it Easy to Provision Software Trials, Demos and Training Environments in the Azure Cloud in One Click, Without Any IT Involvement MICROSOFT.
A10 Networks vThunder Leverages the Powerful Microsoft Azure Cloud Platform to Offer Advanced Layer 4-7 Networking, Security on a Global Scale MICROSOFT.
SMS+ on Microsoft Azure Provides Enhanced and Secure Text Messaging, with Audit Trail, Scalability, End-to-End Encryption, and Special Certifications MICROSOFT.
Wonderware Online Cost-Effective SaaS Solution Powered by the Microsoft Azure Cloud Platform Delivers Industrial Insights to Users and OEMs MICROSOFT AZURE.
Power BI Security Best Practices
Extending Your On-Premises Apps with the Windows Azure Platform
Windows Azure AppFabric
Amit R Bhatia / Puneeth Nayak
John Shewchuk Technical Fellow Microsoft Corporation
OpenNebula Offers an Enterprise-Ready, Fully Open Management Solution for Private and Public Clouds – Try It Easily with an Azure Marketplace Sandbox MICROSOFT.
Running on the Powerful Microsoft Azure Platform,
Built on the Powerful Microsoft Azure Platform, iSwarm Helps Businesses Analyze Social Media Conversations, then Connect with Individuals MICROSOFT AZURE.
Be Better: Achieve Customer Service Excellence and Create a Lean RMA and Returns Process with Renewity RMA and the Power of Microsoft Azure MICROSOFT AZURE.
Big Red Cloud Offers a Simple Online Accounts Solution for Business Owners and Bookkeepers Hosted on the Powerful Microsoft Azure Platform MICROSOFT AZURE.
Auth0 Is Identity Made Simple for Developers, Built by Developers and Supported by the High Availability and Performance of Microsoft Azure MICROSOFT AZURE.
PowerHub on Microsoft Azure Enables Renewable Energy Professionals to Track and Manage Projects from a Centralized Platform Accessible Anywhere MICROSOFT.
Data Security for Microsoft Azure
CloneManager® Helps Users Harness the Power of Microsoft Azure to Clone and Migrate Systems into the Cloud Cost-Effectively and Securely MICROSOFT AZURE.
Partner Logo Azure Provides a Secure, Scalable Platform for ScheduleMe, an App That Enables Easy Meeting Scheduling with People Outside of Your Company.
Druva inSync: A 360° Endpoint and Cloud App Data Protection and Information Management Solution Powered by Azure for the Modern Mobile Workforce MICROSOFT.
Dell Data Protection | Rapid Recovery: Simple, Quick, Configurable, and Affordable Cloud-Based Backup, Retention, and Archiving Powered by Microsoft Azure.
Keep Your Digital Media Assets Safe and Save Time by Choosing ImageVault to be Your Digital Asset Management Solution, Hosted in Microsoft Azure Partner.
One-Stop Shop Manages All Technical Vendor Data and Documentation and is Globally Deployed Using Microsoft Azure to Support Asset Owners/Operators MICROSOFT.
Appcelerator Arrow: Build APIs in Minutes. Connect to Any Data Source
ADAM on Microsoft Azure Streamlines Access and Control of Full Function Digital Asset and Product Content Management for All Workers MICROSOFT AZURE ISV.
Media365 Portal by Ctrl365 is Powered by Azure and Enables Easy and Seamless Dissemination of Video for Enhanced B2C and B2B Communication MICROSOFT AZURE.
Abiquo’s Hybrid Cloud Management Solution Helps Enterprises Maximise the Full Potential of the Microsoft Azure Platform MICROSOFT AZURE ISV PROFILE: ABIQUO.
COMPANY PROFILE: REELWAY
Presentation transcript:

1 Hyderabad Techies Microsoft Developer User Group - Hyderabad Introduction to.NET Services “ Sharing is our Passion “

Introduction to.NET Services Nithin Mohan T K Technology Specialist / Member Microsoft Developer UG – Hyderabad Blog… Mail…

3.NET Services Extending.NET technologies to the cloud Open and accessible REST, SOAP, RSS, Atom Publishing Protocol Class libraries for.NET, Java and Ruby Easy-to-use from.NET Your skills move forward Initial focus on two key developer challenges Application integration Access control in a federated world

4 Service Bus Key developer challenges Want to make it easy and secure for partners to use your application Don’t always know the characteristics or scale of the integration Partners, customers & users have devices and services running behind firewalls Approach Provide a high-scale, highly-available “Service Bus” that supports open Internet protocols

5 Service Bus The Internet Service Bus pattern Service Registry Connectivity (Relay & Direct Connect) Publish/Subscribe “Under the Hood” Bindings Integration with Access Control

6 The Service Bus Pattern Service Registry ApplicationsApplications Federated Identity and Access Control ClientsClients Cloud Services On-PremisesOn-Premises Desktop, RIA, Web StorageStorageBillingBilling …… ComputeCompute Corp Service Your Services Application Messaging Patterns Connectivity Fabric ESB

7 Service Bus Capabilties Service Registry Stable URIs for services Discovery – supports the Atom Publishing Protocol Connectivity Fabric NAT and firewall traversal Mobile and intermittently connected receivers Application Messaging Bi-directional and peer-to- peer communication Publish and subscribe Multicast to receivers through a stable URI Message buffering Web integration, queues and routers

8 Service Registry [http|sb]://solution.servicebus.windows.net/accounts/svc/… Root solution. servicebus.windows. net solution. servicebus.windows. net accounts contoso … … svc Service Registry Root Multi-Tenant The service registry provides a mapping from URIs to services

9 Connectivity Key capabilities Relay Ensure applications connect Direct connect Shortcuts for efficiency Queues and Routers Messages can be stored and forwarded Available via HTTP, REST and ATOM Available in.NET via WCF Bindings

10 Relay One-Way Connection sb://solution.servicebus.windows.net/service/endpoint Sender Receiver Outbound SSL-Secured TCP 828 Connection to Relay Rendezvous Endpoint One-Way Messages through TCP Tunnel

11 Relay sb://solution.servicebus.windows.net/service/endpoint Direct Connections SenderReceiver - Outbound SSL-Secured TCP 828 Connection to Relay - Out-of-Band Protocol to negotiate Direct Connection Upgrade to Direct when possible

12 Publish/Subscribe Builds on the relay and direct connect connectivity capabilities “Connected multicast” for current listeners Or can use queues and routers to get long-lived, “store and forward” message routing

13 Relay sb://solution.servicebus.windows.net/service/endpoint Basic Publish/Subscribe Sender Receiver Outbound SSL-Secured TCP 828 Connection to Relay Rendezvous Endpoint One-Way Messages through TCP Tunnel Receiver

14 Queues Service Bus Sender Receiver sb://solution.servicebus.windows.net/a/b/ HTTP(S) / net.tcp Backend Naming Routing Fabric Frontend Nodes HTTP(S) Dequeue Msg Dequeue Route Manager Queue Policy

15 Routers Service Bus Sender sb://solution.servicebus.windows.net/a/b/ HTTP(S) / net.tcp Backend Naming Routing Fabric Frontend Nodes Msg Route Manager Router Policy Receiver Msg Subscribe

16 Service Bus The Internet Service Bus pattern Service Registry Connectivity (Relay & Direct Connect) Publish/Subscribe “Under the Hood” Bindings Integration with Access Control

17 Rich Set of Connectivity Bindings WCF BindingNew Service Bus Binding BasicHttpBindingBasicHttpRelayBinding WebHttpBindingWebHttpRelayBinding WSHttpBindingWSHttpRelayBinding WS2007HttpBindingWS2007HttpRelayBinding WSHttpContextBindingWSHttpRelayContextBinding WS2007FederationHttpBindingWS2007FederationHttpRelayBinding NetTcpBindingNetTcpRelayBinding NetTcpContextBindingNetTcpRelayContextBinding n/aNetOnewayRelayBinding n/aNetEventRelayBinding

18 Relay RFC2616-Compliance Sender Receiver RFC2616 compliant HTTP stack Only 2 concurrent connections per domain 2 concurrent polling clients starve dual reply-to path

19 Relay HTTP Connection Workaround Sender Receiver Single-threaded polling receiver; multiplexed message batch retrieval; MT local dispatch and fan-out Multiplex messages through volatile message buffer for pickup STA Synchronized reply-to connections

20 Relay Access Control Principles Access Control is governed by Access Control Rules Composes cleanly with SOAP-over-HTTP SOAP 1.1, SOAP 1.2 HTTP clients able to send messages through the relay with minimal extra effort WS-Security header can used for end-to-end application level security - optional Composes cleanly with transport-only message protection Support any SOAP 1.2 Basic Profile 2.0 compliant client

21 Unauthenticated Senders Unauthenticated ‘Send’ option Client do not need to acquire tokens for communicating through the relay Supports plain Basic Profile SOAP requests Opt-In Policy set by listening services Enables services to choose between Relay- based access control and locally-enforced end- to-end access control

22 Service Bus Summary Service Registry Relay and direct connect connectivity Publish/Subscribe Integrated with Access Control services

23 Access Control Key developer challenges Many identity providers, many vendors, many protocols, complex semantics – tricky to get right Application strewn with one-off access logic Hard to get right, not agile, not compliant, many dead ends Approach Automate federation for a wide-range of identity providers and technologies Factor the access control logic from the application into manageable collection of rules Easy-to-use framework that ensures correct token processing

Access Control Interactions Your Access Control Instance (a hosted STS) Your Access Control Instance (a hosted STS) Relying Party (Your App) Relying Party (Your App) 2. Send Claims 4. Send Token (output claims from 3) 5. Send Message w/token 0. Certificate exchange; periodically refreshed Requestor (Your Customer) Requestor (Your Customer) 1. Define access control rules for a customer 6.Claims checked in Relying Party 3. Map input claims to output claims based on access control rules

Hosted Security Token Service Web Portal and API Define and manage Application scopes, access control rules, claim types, signing and encryption keys Access control rules Rules are defined within an application scope Rules can be chained e.g. bob  manager, and manager  allowed Simple model: the output security token is a collection of claims based on the claims in the incoming token

Standards The Access Control Service is fully standards compliant WS-Trust and WS-Federation, SAML A.NET application can easily handle the tokens and claims from the Access Control Service Windows Identity Foundation (aka Geneva Framework) provides a.NET API for doing this Microsoft has been working with vendors such as Sun and Tivoli to make sure everything works correctly on other platforms

27 Target Service AC.W.N STS Client RST/RSTR AC.W.N Credential appliesTo: Target Endpoint AC.W.N Credential appliesTo: Target Endpoint Relay and End-to-End Security Relay P P P P Requires AC.W.N Token AC.W.N Credential appliesTo: Relay Endpoint AC.W.N Credential appliesTo: Relay Endpoint WS-Sec Hdr P P AC.W.N Credential appliesTo: Relay Endpoint AC.W.N Credential appliesTo: Relay Endpoint relayToken WS-Sec Hdr

28 Access Control Summary Flexible, rules-driven access control Rich support for a wide range of identity providers Easy to incorporate into existing applications Works with lots of other environments e.g. Sun’s Java Metro 1.3

29 Call to Action Go to the.NET Services Portal Create some solutions Try out the.NET Services SDKs Go to to get in depth sessionshttp:// Service Bus Access Control

30

31 Visit our website

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.