ⓘ Windows CardSpace, is Microsofts now-canceled client software for the Identity Metasystem. CardSpace is an instance of a class of identity client software calle ..


ⓘ Windows CardSpace

Windows CardSpace, is Microsofts now-canceled client software for the Identity Metasystem. CardSpace is an instance of a class of identity client software called an Identity Selector. CardSpace stores references to users digital identities for them, presenting them to users as visual Information Cards. CardSpace provides a consistent UI designed to help people to easily and securely use these identities in applications and web sites where they are accepted. Resistance to phishing attacks and adherence to Kim Camerons "7 Laws of Identity" were goals in its design.


1. Overview

When an Information Card-enabled application or website wishes to obtain information about the user, the application or website requests a particular set of claims from the user. The CardSpace UI then appears, switching the display to the CardSpace service, which displays the users stored identities as visual i-cards. The user selects the InfoCard to use and the CardSpace software contacts the issuer of the identity to obtain a digitally signed XML token that contains the requested information. CardSpace also allows users to create personal also known as self-issued Information Cards, which can contain one or more of 14 fields of identity information such as full name, address, etc. Other transactions may require a managed InfoCard; these are issued by a third party identity provider that makes the claims on the persons behalf, such as a bank, employer, or a government agency.

Windows CardSpace is built on top of the Web Services Protocol Stack, an open set of XML-based protocols, including WS-Security, WS-Trust, WS-MetadataExchange and WS-SecurityPolicy. This means that any technology or platform that supports WS-* protocols can integrate with CardSpace. In order to accept Information Cards, a website developer simply needs to declare an HTML tag that specifies the claims the website is demanding from the user and then implement code to decrypt the returned token and extract the claim values. If an Identity Provider wants to issue tokens, they must provide a means by which a user can obtain a managed card and provide a Security Token Service STS which handles WS-Trust requests and returns an appropriate encrypted & signed token. If an Identity Provider does not wish to build an STS, they will be able to obtain one from a variety of vendors including PingIdentity, BMC, Sun Microsystems, Microsoft, or Siemens, as well as other companies or organizations.

Because CardSpace and the Identity Metasystem upon which it is based are token-format-agnostic, CardSpace did not compete directly with other Internet identity architectures like OpenID and SAML. In some ways, these three approaches to identity can be seen as complementary. Indeed, Information Cards can be used today for signing into OpenID providers, Windows Live ID accounts, SAML identity providers, and other kinds of services.

IBM and Novell planned to support the Higgins trust framework to provide a development framework that includes support for Information Cards and the Web Services Protocol Stack, thus including CardSpace within a broader, extensible framework also supporting other identity-related technologies, such as SAML and OpenID.

Microsoft initially shipped Windows CardSpace with the.NET Framework 3.0, which runs on Windows XP, Windows Server 2003, and Windows Vista. It is installed by default on Windows Vista as well as Windows 7 and is available as a free download for XP and Server 2003 via Windows Update. An updated version of CardSpace shipped with the.NET Framework 3.5. In Windows 7 CardSpace technology is used by the new Credential Manager for the management and storage of saved user credentials.


2. Retirement

On February 15, 2011, Microsoft announced that Windows CardSpace 2.0 would not be shipped. Microsoft is currently working on a replacement called U-Prove.

  • any given interaction. The information card metaphor is implemented by identity selectors like Windows CardSpace DigitalMe or Higgins Identity Selector
  • Framework: Windows Presentation Foundation WPF Windows Communication Foundation WCF Windows Workflow Foundation WF Windows CardSpace Windows Presentation
  • Sharing Center Windows CardSpace was removed. Windows Defender: Can no longer schedule automatic system scans it is now part of Windows Action Center s maintenance
  • Windows CardSpace WCS Universal Windows Platform UWP Windows PowerShell Microsoft Management Console MMC Text Services Framework Windows Driver Model
  • Virtual Execution System Windows CardSpace Windows Communication Foundation Windows Forms Windows Presentation Foundation Windows Workflow Foundation ClearType
  • The transition from Windows 7 to Windows 8 introduced a number of new features across various aspects of the operating system. These include a greater
  • introduced to Windows in 2002 on Windows XP Media Center Edition MCE It was included in Home Premium and Ultimate editions of Windows Vista, as well
  • engine and tools for building workflow - enabled applications on Windows Windows CardSpace is a component that securely stores digital identities of a person
  • origin dated back to Windows CE in 1996, though Windows Mobile itself first appeared in 2000 as Pocket PC 2000. It was renamed Windows Mobile in 2003, at
  • Windows 98 codenamed Memphis is a personal computer operating system developed by Microsoft as part of its Windows 9x family of Microsoft Windows operating
  • Microsoft Windows was announced by Bill Gates on November 10, 1983. Microsoft introduced Windows as a graphical user interface for MS - DOS, which had been
  • Windows 8 is a personal computer operating system that was produced by Microsoft as part of the Windows NT family of operating systems. The operating