SOA Security Patterns

Hot Topic

Software architecture... I'm stuck!
Client Server Application
biztalk and the System Messaging namespace
N-tier layer separations and connection/interaction
XP or XPE for POS application
Is their worflow engine which generates .net code at compile time
Biztalk server 2004 Data Access
OO design question.
User Connection ratio for asp.net application
Biztalk server 2004 Data Access

Architecture

User Connection ratio for asp.net application
Real Challenge to the architect for architecting and designing for FUTURE application development’s method.
Why architecture with OO methods?
SQL 2005 and Visio for Enterprise Architects Database
biztalk as a workflow
Architecture options for running a long process from an ASP.NET website
Message vs Service.
Entities
Advanced NTFS Premissions: Folder ReadOnly - Content Modify
Need help on solution architecture employing BizTalk Server & MSMQ Server

SOA Security Patterns

Hi,

I am looking for some guidance on designing security services that can be used on any platform. I already have services that take care of authentication and authorisation, but what I currently have maps well to ASP.net or WIndows clients, it would not neccesarily work well in another client environment. Additionally, with WSE and WCF enabling us to secure the channel between the client and the service, is 'validating' the claimed identity of the user along with their permissions (roles etc) during calls to business services overkill While I would obviously like to reuse as much of the pre-built security infrastructure as possible, having something that works in the same way as my business services is my ultimate goal.

If anybody can give me any hints, or point me in the direction of some appropriate security patterns I would appreciate it.

BTW, the services are built in C# 2.0.

Thanks, ASC.