Govind's WebLog

Browse by Tags

All Tags » WCF » Mixed-Mode Security (RSS)

Tuesday, February 06, 2007 10:10 PM

Asymmetric tokens and Mixed-Mode Security

When you are using a X.509 Certificate as the client authentication token in Mixed-Mode Security - apart from signing the Timestamp WCF will sign the 'To' header as well. This is to prevent a client spoofing attack by a rougue service. Consider the situation

Posted by govindr | 0 Comments

Filed under: Security, WCF, Security Tokens, webservices, Mixed-Mode Security

Tuesday, February 06, 2007 9:41 PM

WCF Security Modes

WCF supports three types of Security. They are, Transport Security Mixed-Mode Security Message Security Let's discuss the various Security Modes below. Transport Security is applied at the transport byte stream below the message layer. The message does

Posted by govindr | 4 Comments

Filed under: Security, Message Security, WCF, transport security, Security Tokens, Mixed-Mode Security

Govind's WebLog

This Blog

Syndication

Search

Tags

Archives

Browse by Tags

Asymmetric tokens and Mixed-Mode Security

WCF Security Modes