Choosing the Best Security Option for WCF

Question

Choosing the Best Security Option for WCF

We have a project that contains a WCF service and several clients that connect to it. Some of them are computers using NetTcp to connect to the service. Few others run on Windows Mobile Devices (Compact Framework) using BasicHttp to connect. We cannot use Windows Authentication because different computers use different Windows accounts. How can we provide service only to use existing PCs and mobile devices and prohibit other devices?

0

security wcf

mrtaikandi 08 nov. '08 at 8:51

source to share

1 answer

Adron · Answer 1 · 2008-11-11T03:30:26+0000

I believe the best security you could enable is SSL over HTTP and the standard username / password authentication scheme. For a really great comprehensive overview of the various aspects of WCF security check out the Codeplex site: http://www.codeplex.com/WCFSecurity

Specifically this page: http://www.codeplex.com/WCFSecurityGuide

Choosing the Best Security Option for WCF

More articles: