 |
 |
 |
Blog Feed (includes personal posts) |
|
Primary Site Feed (main site feed) |
Have you worked with SharePoint and SmartCards?
I have, as in most military / federal environments you will find that users generally access your SharePoint instance through the use of a CAC (Common Access Card) card. It is the same as any other SmartCard just a little more jazzed up in general with some other information […]
Indeed I do. So much, I will be writing a series of articles dedicated to SAML and SharePoint integration. Well, I don’t know if it will be a series in order, but I wrote a large shared class library for general SAML / SharePoint functionality that will help you write SAML applications for SharePoint / […]
Some people have emailed me expressing an interest in CryptoCollaboration, wanting to know the specific encryption algorithms that are going to be supported. For the time being, in order to satisfy the requirements for my dissertation, only secret-key encryption (symmetric) algorithms are going to be in the initial release.
FOR THIS VERSION ONLY DOCUMENTS ARE ENCRYPTED. […]
A SharePoint security article I wrote for Microsoft TechNet got published today, and will be going out with the standard TechNet security newsletter on Wed. of this week. The topic of the article is ForeFront, and the title of it is “Reliable Repositories: Using Microsoft Forefront Security for SharePoint to Defend Collaboration”. It goes over […]
For organizations that have certain security standards, it is customary that the common name on certificates must match the host name of the machine. Furthermore, wildcard certificates are generally unacceptable because of the broad reach that such a certificate implementation could have.
The solution that most organizations will take in light of these considerations is to use a subject alternative name […]
Privacy is important, especially in a collaborative environment such as SharePoint where users are heavily empowered with actions that can directly effect sensitive files and file containers. The most typical way to protect privacy for file types is to implement a form of Multi-Level Access Control, and/or native encryption components that are easy for users […]
When working with SharePoint and certificate solutions (SSL, not IPSec) for providing client level pipe security, you may run into some issues that although doesn’t occur with every environment. This particular concern occurs when you have a Dual SAN (Subject Alternative Access) for your SSL certificate because your SharePoint machine host name is different than […]
