Focus on implementing security - securely!

I build open-source security components and consult on how to achieve secure systems and implement security in .NET applications.

Consultant keywords

OAuth 2.0
OpenID Connect 1.0
JWT
SAML 2.0
SAML 1.0/1.1
WS-Federation
WS-Trust
Login, SSO (single sign-on)
Two-factor / Multi-factor
Single logout
Security architecture
MitID
OCES3
OIOXML3
NSIS
NemLog-in
Context Handler
Fælleskommunal Adgangsstyring
IdentityServer / Duende
Auth0
Microsoft Entra ID (Azure AD)
Azure AD B2C
AD FS, WAP
Active Directory (AD)
Azure
Visual Studio
.NET
.NET Core
ASP.NET Core
ASP.NET Core MVC
Blazor WebAssembly
C#
WinDbg
HTML, CSS
JavaScript
jQuery
AngularJS
Bootstrap
JSON, REST
XML, Webservice, WCF
Azure Key Vault
Hardware security module (HSM)
NoSQL
Azure Cosmos DB
SQL
LINQ
Entity Framework (EF)
Dapper
Regular Expression (Regex)

I'm an architect and developer - CV

I'm the architect and developer behind FoxIDs.

I believe that security is one of the most important foundational elements in an application and that an application or system should be built to be secure from the very beginning. I develop security components and samples in .NET and advise as a consultant on how to implement security correctly.

Anders Revsgaard

Open-source security components

FoxIDs

FoxIDs is an open-source and free Identity Services (IDS) supporting: login, OAuth 2.0, OpenID Connect and SAML 2.0.

FoxIDs can at the same time work as an authentication platform and a security broker where FoxIDs support translating between standards like SAML 2.0 and OpenID Connect.

FoxIDs is build on .NET and support Cloud and Private Cloud deployment:

  • FoxIDs is available at FoxIDs.com as an Identity as a Service (IDaaS).
  • You are free to deploy FoxIDs as your own private cloud in your Microsoft Azure tenant.

The FoxIDs documentation and getting started guide.

Security components used by FoxIDs and others

ITfoxtec Identity

ITfoxtec Identity is an .NET open-source and free OAuth 2.0 and OpenID Connect 1.0 security component, NuGet.

The component support OAuth 2.0 and OpenID Connect 1.0 as both OpenID Provider (OP) / Identity Provider (IdP) and client and resource.

ITfoxtec Identity Saml2

ITfoxtec Identity Saml2 is an open-source and free SAML 2.0 security component.

The component adds SAML-P support for both Identity Provider (IdP) and Relying Party (RP) on top of the SAML 2.0 functionality implemented in .NET.

The ITfoxtec Identity Saml2 documentation and SAML 2.0 base NuGet, SAML 2.0 MVC NuGet and SAML 2.0 MVC Core NuGet.

ITfoxtec Identity Blazor

ITfoxtec Identity Blazor is an open-source and free OpenID Connect 1.0 security component for Blazor WebAssembly (WASM), NuGet.

The component makes it possible to do login and logout in a Blazor application with a JavaScript free .NET component using OpenID Connect 1.0 and Proof Key for Code Exchange (PKCE).


Non open-source security component

ITfoxtec AD FS Audit

ITfoxtec AD FS Audit [DA] extend the logging functionality in AD FS with support for logging the entire SAML 2.0 request and response in Windows Event Log.

The component logs the raw SAML 2.0 request and response including the signature proof for both Claims Provider and Relying Party.

With the component installed an AD FS support the logging policy stated by the Danish NemLog-in security service.

A selection of customers

JO Informatik FlexDanmark ENERGY COOL Coop Beierholm Kamstrup Septima Seges

ITfoxtec

Address
Marselis Boulevard 1
8000 Aarhus
Denmark

VAT: DK 30 59 65 01

Payments by bank
Jyske Bank
Account number: 5072-0001252901
BIC/SWIFT: JYBADKKK
IBAN: DK6350720001252901

Payments by PayPal
PayPal.Me/ITfoxtec

Open-source donations by PayPal
Donate

Anders Revsgaard

Consultant hourly rate

  • 250EUR per hour (If you are in EU, please provide the VAT number to avoid VAT. There is no VAT if you are outside EU)
  • In Denmark 1.800DKK per hour + 25% VAT

Email: [email protected]
Mobil: +45 50595808

Use cases

A look at what's possible with FoxIDs

FoxIDs as one single Identity Provider

You can benefit from having FoxIDs as one single identity provider when building applications. Development becomes simpler and more secure by using the same identity provider and security standards across all applications. Single sign-on is easier to achieve and APIs can be called securely from all applications.

FoxIDs will then handle user authentication with username+password and optionally MFA or transfer user ID's from users authenticated in an external identity provider such as Azure AD, AD FS, IdentityServer, Google or Facebook or others.

The application can choose how the user should log in by setting a parameter.

Translate SAML 2.0 to OpenID Connect

You can use FoxIDs to translate from SAML 2.0 to OpenID Connect. Then FoxIDs handles the SAML 2.0 traffic to the Identity Provider (IdP) and your application connects to FoxIDs with OpenID Connect.

SAML 2.0 is an old standard with its shortcomings, and therefore it is often a better choice to use OpenID Connect in your application.

Simplify NemLog-in connection

With FoxIDs, connecting to NemLog-in is easy by letting FoxIDs handle the NemLog-in connection without worrying about the complexity. FoxIDs handles everything related to the connection to NemLog-in and can translate the complex connection to a modern security standard like OpenID Connect.

Your application and possible API is then easy to connect using OpenID Connect, and the developer doesn't have to worry much about NemLog-in and all the requirements.

Customers

GF forsikring
KMD
Beierholm
FlexDanmark
TDC
Klasselotteriet
JO Informatik
Statens Arkiver
Atea
Leman
Falck Group
Falck Danmark
Falck Healthcare
Novasol
Seges
LogBuy
Metropol
MuninSpot
Septima
Delegate
Rigspolitiet
Kamstrup
Insero Software
Educant
GeoDanmark
Agnitio
AlfaPeople
Applikator
Acecom
MicroTech
SpeedAdmin
ENERGY COOL
EConGrid
FlexDanmark
Notaplan
ICAS
Escendo
ClearView Trade
RIB Software
Aarhus municipality
Odense municipality
Timeplan
Verdo
Timeplan
Viking
Kopenhagen Fur
Systemtech
IncomIT
Speedadmin
Region Syddanmark
Miljøstyrelsen
ProActive
Unwire
Anjep
Axapoint
Celenia
Conscensia
AlfaPeople
TimePlan
Charlie Tango