Re: encrypt password for webservices

From: Etienne Charland (mystery@golden.net)
Date: 04/09/03 

From: "Etienne Charland" <mystery@golden.net>
Date: Wed, 9 Apr 2003 17:30:17 -0400

Why don't you just use Windows Integrated Security in IIS, and encrypt with
SSL? However, you won't be able to use accounts from your database. It will
use windows accounts.

Etienne

"Mathew Michuta" <nektoinphx@yahoo.com> wrote in message
news:017201c2fedd$0725f1f0$a501280a@phx.gbl...
> I'll start by saying I've never done any encryption
> before. All my apps before now have been on an isolated
> network, with no real need.
>
> But now I need to use it. I have created webservices that
> return data to a vb.net windows forms application. It
> works fine receiving the username, password, and various
> other parameters, but now I need to add some sort of
> encryption so my passwords are not flying all over the
> internet in plain text.
>
> my ideal solution would be that the user logs into the vb
> app in florida using username and password. vb app
> encrypts username and password, requests authentication
> from my webservice in idaho, webservice receives string
> data, decrypts, compares to value stored in sql, and
> returns either 1(successful)/0(unsuccessful) or the hashed
> password to be used for all subsequent webservice data
> calls. I have set up all my webservices to require the
> username/password to be sent regardless of the function of
> the webmethod.
>
> My question is how do I do that? Are there any tutorials
> on how to use encryption in that manner? I'm assuming that
> I would not want to encrypt all data, due to performance
> issues on the server and client.
>
> Thanks in advance.

Relevant Pages

  • Re: user does not have acces privileges
    ... to reinstall the windows to do that. ... ownership is the reason of the inaccessibility. ... I'm not an expert but I find out, it is not the encryption but ... "Zorro" wrote: ...
    (microsoft.public.windowsxp.accessibility)
  • Re: user does not have acces privileges
    ... But now at the new files I should have the right EFS key in my computer. ... That means there is something wrong with the ownership settings and that was ... Or it is only matter if the encryption is combined with the ownership change? ... to reinstall the windows to do that. ...
    (microsoft.public.windowsxp.accessibility)
  • Re: Cannot access encrypted files after reinstalling Windows XP Professional
    ... able to break the encryption in a reasonable amount of time. ... > keys are generated each time you do an install, ... > they would be related to the Windows serial key, ... >>> All data files are stored on partition D:. ...
    (microsoft.public.windowsxp.security_admin)
  • RE: Windows Server 2003 - Not secure from my test but OSX from Mac is secure from the start
    ... When enabled in mode 3 you can store the system encryption key ... Sadly most Windows admins are not fully aware of all the security tools ... Worms & Port Scans ...
    (Security-Basics)
  • RE: Protecting sensitive files on a Windows file server
    ... Protecting sensitive files on a Windows file server ... compatible encryption type to protect the files, ... How are others protecting this information in their place of work? ...
    (Security-Basics)
Quantcast