Why use a trusted certificate for WCF message security? | ansaurus

tags:

views:

29

answers:

2

+1 Q:

Why use a trusted certificate for WCF message security?

What is the advantage of using a trusted certificate instead of self-signed for message security in WCF?

As far as i understand it's only used for encryption, not really validating the identity.

A:

Depends, if you use an SSL certificate to offer the WCF Service in https then it's used for encryption, and the client could require it to be trusted (or not).

If the WCF Service Requires the client to sign the request, it is only used for Validation/Verification - and then you will certainly need a trusted certificate.

(The client certificate is then configured as an <endpointBehavoir>)

Rune Baess 2010-10-31 21:32:41

related questions

Dynamic programming with WCF

WCF Service Returning "Method Not Allowed"

Exceptions in Web Services

What SPN do I need to set for a net.tcp service?

How do I unit test a WCF service?

Best practices for versioning your services with WCF?

Lazy Loading with a WCF Service Domain Model?

How many ServiceContracts can a WCF Service have?

How can I authenticate using client credentials in WCF just once?

WCF - Domain Objects and IExtensibleDataObject

InvalidOperationException while creating wcf web service instance

Closing and Disposing a WCF Service

What WCF best practices do you follow in object model design?

WCF push to client through firewall?

Loading System.ServiceModel configuration section using ConfigurationManager

I would like some tips for debugging WCF Web Service exceptions

What's the best way to authenticate over WCF?

Good Reads for Distributed Systems

.Net - Returning DataTables in WCF

What is the easiest way to add compression to WCF in Silverlight?

WCF Backward Compatibility Issue

Best Practices for securing a REST API / web service

Web Services -- WCF vs. Standard

C# WCF Service - Backward compatibility issue

WCF - High availability