We are building a highly sensitive system, you can think of it as a banking system, where you have a client with a certificate that calls a WCF service to send a transaction to the server.
staying in the example of the banking system, that transaction can be a wire order or a debit. So for audit and in case of litigation by the client we need to be able to provide the originally sent encrypted and signed (stream) by the client to show that the order originated from them.
My problem is, I can't find a way to intercept the stream before it's deserialized and unencrypted.
Or is there another way other than intercepting the stream to be able to save the object as it was sent by the client.
Thank you!