Encryption of messages sent to WCF services hosted on a server with a real IP address

Question

Encryption of messages sent to WCF services hosted on a server with a real IP address

I have a WCF service hosted on a server with a real IP address but without a domain name. Clients are .NET desktop applications. I need to encrypt the data coming back and force it between the clients and the server. How can i do this? I understand that the certificates required for SSL connectivity require a domain name. that's for sure? What are my options?

+3

security .net wcf wcf-security

Emad Jun 27 '10 at 3:29

source share

1 answer

Incognito · Accepted Answer · 2010-06-27T04:01:50+0000

If all your clients are .NET applications, consider using NetTcpBinding, which is safe by default. All message packets are signed and encrypted using TCP.

You can also control the level of protection on message contracts, providing granular control over specific headers or body elements.

You can use the ProtectionLevel property . The following options are possible: None, Signand EncryptAndSign.

None disables message protection.
EncryptAndSign provides a complete security message and default behavior.
A sign means that the message must be signed, but not encrypted

WCF provides you with rich security features, check out Windows Communication Foundation Security for more details.

Encryption of messages sent to WCF services hosted on a server with a real IP address

More articles: