tags:

views:

632

answers:

4
+1  Q: 

Other ways to encrypt WCF Connections

I'm currently working on a project that requires encrypted data be passed between WCF hosts. As I understand it there are only 2 ways to ensure that data passed over WCF is secure.

  1. Using Certificates
  2. Using a Domain (or having the same username and password on every machine on the network)

Using certificates can be expensive and complicated to manage and since we're not guaranteed to have a server class machine at every deployment a Domain is also out of the question. Having every machine use the same username and password is also problematic if that password ever needs to be changed.

Currently we use OpenSSH to tunnel our connections between hosts. Is there another option built into the framework that I'm unaware of?

A: 

If you are using a http endpoint, you can use a secure transport such as https.

Bermo  2008-09-08 21:07:40
That still requires certificates...
Chris Lively  2008-09-08 21:08:25
A: 

Use traditional encryption of the data that you are placing inside the WCF container. Maybe something like the following:

http://www.obviex.com/samples/EncryptionWithSalt.aspx

Chris Lively  2008-09-08 21:10:59
We considered this but to maintain strong typing of the functions it has to happen at a much lower level.
Mykroft  2008-09-08 21:16:06
+1  A: 

Encryption requires a key. Keys are usually implemented as certificates. If you own both sides of the communication, you can create your own certificate for free without having to go buy one from a trusted root authority.

Robert C. Barth  2008-10-10 23:57:09
A: 

The cheapest method is probably to run your own certification authority. This means you have total control over the certificates, but you do not have to pay for external certification. If you automate this appropriately, you can give every machine on your net a cryptographic identity and use your local certification to tie everything together.

David Schmitt  2008-10-27 21:46:11
I wouldn't say that's the cheapest method. We did consider that but it would have taken a tone of work to setup and maintain.
Mykroft  2008-10-29 15:25:51

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?