Microsoft Pushes Authentication Plan

By Peter Galli  |  Posted 2001-09-24 Print this article Print

Microsoft Corp. last week announced an initiative that it hopes will facilitate a trusted, interoperable authentication network across the Internet.

Microsoft Corp. last week announced an initiative that it hopes will facilitate a trusted, interoperable authentication network across the Internet.

But the Redmond, Wash., software maker also hopes the move will help spur adoption and usage of its Passport authentication service and, ultimately, its Web services.

The company is proposing something its calling Internet Trust Network, which would enable open, federated authentication; universal single sign-on to all users; and interoperability among different enterprise and service authentication systems.

The goal is to enable a world where Web services based on Extensible Markup Language can interoperate freely, through a broad Internet Trust Network similar to e-mail, Domain Name System and the ATM network created by the banking industry, said Brian Arbogast, vice president of Microsofts .Net core services platform.

"We realize that there will be many authenticators on the Internet, including enterprises for their own staff and other service operators beyond Microsoft. As such, we need a model for bridging across these networks," Arbogast said.

To achieve this, the network and Microsofts own Passport service would support Kerberos 5.0, an open standard for authentication, which "provides a secure mechanism for creating trusted relationships across otherwise distinct boundaries," Arbogast said.

Microsoft would take the lead in the formation of this network by making Passport available for federation with other authentication systems, he said. This means that Passport will be able to accept credentials issued by other organizations that are part of the network, and they could in turn accept Passport credentials. This is a major shift for Microsoft, which has until now been the only operator of Passport.

Microsoft used the announcement to rename its core group of initial Web services, formerly known as HailStorm, as .Net My Services. While the company plans to federate the services, details will be made available at its Professional Developer Conference in Los Angeles next month, Arbogast said.

Passport will support universal single sign-on next year, while Microsofts Windows .Net Server line, due next year, will also allow organizations of all sizes to easily and securely participate in the Internet Trust Network.

If the initiative gains the necessary support, enterprises will be able to participate by licensing Windows .Net Server or buying an implementation of Kerberos Version 5.0. Authentication providers could outsource authentication to Passport or, in the future, to other federated authentication providers. They could also buy or build an authentication system that is compliant with Kerberos 5.0, Arbogast said.

Peter Galli has been a financial/technology reporter for 12 years at leading publications in South Africa, the UK and the US. He has been Investment Editor of South Africa's Business Day Newspaper, the sister publication of the Financial Times of London.

He was also Group Financial Communications Manager for First National Bank, the second largest banking group in South Africa before moving on to become Executive News Editor of Business Report, the largest daily financial newspaper in South Africa, owned by the global Independent Newspapers group.

He was responsible for a national reporting team of 20 based in four bureaus. He also edited and contributed to its weekly technology page, and launched a financial and technology radio service supplying daily news bulletins to the national broadcaster, the South African Broadcasting Corporation, which were then distributed to some 50 radio stations across the country.

He was then transferred to San Francisco as Business Report's U.S. Correspondent to cover Silicon Valley, trade and finance between the US, Europe and emerging markets like South Africa. After serving that role for more than two years, he joined eWeek as a Senior Editor, covering software platforms in August 2000.

He has comprehensively covered Microsoft and its Windows and .Net platforms, as well as the many legal challenges it has faced. He has also focused on Sun Microsystems and its Solaris operating environment, Java and Unix offerings. He covers developments in the open source community, particularly around the Linux kernel and the effects it will have on the enterprise.

He has written extensively about new products for the Linux and Unix platforms, the development of open standards and critically looked at the potential Linux has to offer an alternative operating system and platform to Windows, .Net and Unix-based solutions like Solaris.

His interviews with senior industry executives include Microsoft CEO Steve Ballmer, Linus Torvalds, the original developer of the Linux operating system, Sun CEO Scot McNealy, and Bill Zeitler, a senior vice president at IBM.

For numerous examples of his writing you can search under his name at the eWEEK Website at


Submit a Comment

Loading Comments...
Manage your Newsletters: Login   Register My Newsletters

Rocket Fuel