June 06, 2002, 10:24 AM — Microsoft Corp. announced new software on Thursday that will allow organizations to more easily share information stored in computer systems with business partners and customers.
The software, code-named TrustBridge and scheduled to be available next year, allows companies using the Windows operating system to share user identities across business boundaries, Microsoft said in a statement. A provider of human resources services, for example, could give its customers access to its systems by sharing user identity data.
Users of Microsoft's Active Directory service will be able to use TrustBridge to recognize and share user identities with other organizations running Windows or any other identity infrastructure that supports Kerberos 5.0, Microsoft said. Kerberos is a standard security protocol developed at the Massachusetts Institute of Technology.
TrustBridge springs from Web services security work Microsoft has been doing with IBM Corp. and Verisign Inc. The companies developed a specification called WS-Security, which describes how to exchange secure and signed messages in a Web services environment.
In addition to TrustBridge, Microsoft announced that its Visual Studio .Net developer package will be updated later this year to include support for digital signatures and encryption for messages sent using SOAP (Simple Object Access Protocol) following the WS-Security specification.
Also, .Net Passport, Microsoft's authentication service for the Web, will next year support SOAP over HTTP (Hypertext Transfer Protocol), Kerberos and the WS-Security specifications. This will enable .Net passport to federate with TrustBridge and other authentication systems employing WS-Security, Microsoft said.
.Net Server, due to be available to customers next year, will support Passport through Active Directory and the Internet Information Service, Microsoft said.
Competing against Microsoft's network identity model is the Liberty Alliance, spearheaded by Microsoft rival Sun Microsystems Inc. The Liberty Alliance plans to release the first phase of its specification in the coming months. This specification will create a federated network identity and authentication sharing mechanism, according to the Liberty Alliance.
The idea behind Web services is to allow companies to link their applications to the often disparate systems of partners and customers, regardless of the application type or vendor. Technologies enabling this include XML (Extensible Markup Language), SOAP and UDDI (Universal Description, Discovery and Integration).