tags:

views:

83

answers:

3
Q: 

WCF (Param encryption and .NET 1.1 clients)

Hi all,

I'm starting in the WCF world and would like to ask your opinion on something. I need to implement a service exposing one method that receives a couple of parameters. I want the parameters, submitted from a form in the client to the service, to be sent encrypted in the SOAP message.

The service needs to be accessed from .NET 3.5 clients and also 1.1. It is not possible to install the WCF service via a windows service, it needs to be deployed as a IIS app.

My questions: - How can the WCF service assure encryption of the input parameters? A certificate in the client or are there any alternatives? - Is there any problem consuming the WCF service via 1.1 apps, or even other non .NET clients? - Do you think this scenario is implementable with WCF?

Thank you in advance

A: 

There is no way for a .NET 1.1 application to call a WCF service unless that service is exposed through basicHttpBinding. That binding only permits the use of SSL for encryption.

John Saunders  2009-06-03 20:50:16
So there is no reason to use WCF over Web Services in my scenario. Maybe if in the future the legacy code is migrated to .NET 3.5, then it's just changing the binding with WCF...
Dante  2009-06-03 21:24:00
WCF _is_ web services. Are you talking about ASMX? In that case, yes, there's a reason. The ASMX technology is not being developed. It's still supported, but I wouldn't count on any bugs getting fixed.
John Saunders  2009-06-03 21:29:54
Yes, I'm talking about ASMX. In my mindset Web Services are still a synonym for ASMX. Upgrading needed ;)Tks for the help.
Dante  2009-06-04 08:12:16
FYI, there is little change in ASMX between 1.1 and 2.0. Not much more than the addition of JavaScript integration.
John Saunders  2009-06-04 13:27:06
A: 

SSL on the web service host.

JohnOpincar  2009-06-03 20:53:57
A: 

.NET 1.1 doesn't support automatic encryption, or WS-Security. You can encrypt/decrypt the parameters manually, though.

Cheeso  2009-06-03 21:00:55

related questions

Dynamic programming with WCF
WCF Service Returning "Method Not Allowed"
Exceptions in Web Services
What SPN do I need to set for a net.tcp service?
How do I unit test a WCF service?
Best practices for versioning your services with WCF?
Lazy Loading with a WCF Service Domain Model?
How many ServiceContracts can a WCF Service have?
How can I authenticate using client credentials in WCF just once?
WCF - Domain Objects and IExtensibleDataObject
InvalidOperationException while creating wcf web service instance
Closing and Disposing a WCF Service
What WCF best practices do you follow in object model design?
WCF push to client through firewall?
Loading System.ServiceModel configuration section using ConfigurationManager
I would like some tips for debugging WCF Web Service exceptions
What's the best way to authenticate over WCF?
Good Reads for Distributed Systems
.Net - Returning DataTables in WCF
What is the easiest way to add compression to WCF in Silverlight?
WCF Backward Compatibility Issue
Best Practices for securing a REST API / web service
Web Services -- WCF vs. Standard
C# WCF Service - Backward compatibility issue
WCF - High availability