Re: How to secure a Web Services Application...
- From: luvdotnet@xxxxxxxxxxx
- Date: 20 Apr 2006 04:06:07 -0700
You can protect your web service via transport protocol level like
HTTPS, SFTP,etc which means that encryption is done in the transmission
of your messages.
You can protect also via message level which means using a widely used
standard (called WS-Security) to encrypt or sign SOAP messages.
Under this type, you have various mechanisms to use like digital
certificates (x.509), kerberos, SAML, or simple username tokens.
Or you can use both of the above of course.
The Microsoft Patterns and Practices Group has several articles on this
- Prev by Date: Re: Reading Public/private key from a Digital certificate
- Next by Date: Re: Confusion about .Net AllowPartiallyTrustedCallers (IE).
- Previous by thread: How do I get the current user's VPN identity?
- Next by thread: SSL with .NET 1.1