tags:

views:

333

answers:

2
+1  Q: 

Encrypting and Decrypting XML sent and received by RESTful WCF Web Services

I have a web service that receives data in XML. I wish this XML to be encrypted before it is sent and have the serializer handle the decryption. This would let the service methods receive the objects as normal with the encryption detail hidden from them.

I have looked at IOperationBehaviour and inheriting from DataContractSerializerOperationBehavior however I'm finding it hard to find good documentation on how these work and the best way to override/implement them.

Is what I'm trying to do possible? Am I going about it in the right way? Any pointers would be most welcome.

+2  A: 

You could just use wshttpbinding with message encryption (Will not work with REST)

EDIT 1

You can encrypt the transport, which will encrypt the message when it is on the wire. See

http://msdn.microsoft.com/en-us/library/bb924478.aspx

EDIT 2

I agree with John's point below that transport encryption just gives you point-to-point encryption, the message is encrypted on the wire, not through that application layers.

Shiraz Bhaiji  2009-07-31 10:10:28
Yes, except that he's decided that he needs the simplicity of REST - except that he also wants encryption.
John Saunders  2009-07-31 10:32:42
To be fair I added REST to the title after he answered, as I'm using webHttpBinding
Dominic Godin  2009-07-31 10:37:11
I don't understand. If you're using wsHttpBinding, then what's the problem? Also, please update the question to say what you're _actually_ doing.
John Saunders  2009-07-31 10:45:14
I'm not I'm using webHttpBinding. Thanks to the answer provider for the update.
Dominic Godin  2009-07-31 11:18:57
If point-to-point encryption is adequate, then this will work. WS-Security would be necessary if the message were going through application-layer routers, or more than one transport-level hop.
John Saunders  2009-07-31 15:36:04
A: 

Hi,

i am also facing the same problem..

I am having a Rest Web Service, but i would like the Data to be encrypted everythime my Web Service sends or receives.

i am using webHttpBinding, i cannot use wsHttpBinding because my app will not even launch if i use wsHttpBinding.

Can anyone suggest a way to be done?

Really need some help here because i'm developing in C# using WCF and Windows Azure.

Billy Ang  2009-08-26 09:41:39

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?