Just new to this forum, so three completely different questions:
Thanks!
2) Yes, as long as the WCF service creates a new instance of the business object for each request, say as a local variable within each of the exposed service methods (you don't want a shared/instance variable that is use by all web service methods). Just make sure that you dispose of the business object when you have completed... easiest thing to do is use a "using" block.
3) We do not currently have an auditing system built into the StrataFrame Role-Based Security, so the best way to implement that functionality would be through the field changed events on the business object.