自托管WCF服务进行相互身份验证
[英]Mutual Authentication with Self-Hosted WCF Service
问题描述
I'm looking into creating a WCF service that will connect to our Product Management system to provide/update product licensing information. 
我正在考虑创建WCF服务,该服务将连接到我们的产品管理系统以提供/更新产品许可信息。 It will be a self hosting service wrapped up in an NT service and I'm looking at ways to mutually authenticate both the service and the client. 这将是包装在NT服务中的自托管服务,我正在寻找相互认证服务和客户端的方法。 Clients will be desktop applications running on the same machine as the service so I'm thought netTCP binding with Transport security would be sufficient but having looked at the documentation I think I can only achieve Windows credential security which probably isn't going to be good enough for me. 客户端将是与该服务在同一台计算机上运行的桌面应用程序,因此我认为具有传输安全性的netTCP绑定就足够了,但是查看了文档后,我认为我只能实现Windows凭据安全性,可能效果不佳对我来说够多的了。 Principally I'm trying to prevent spoof applications invoking operations on our service and also trying to prevent spoof services masquerading as our own. 原则上,我试图防止欺骗应用程序调用我们服务上的操作,也试图防止欺骗服务伪装成我们自己的服务。
Can anyone give me any suggestions? 谁能给我任何建议吗? I'm a little concerned that I might have to look into certificates :S 我有点担心我可能不得不研究证书:S
Cheers, 干杯,
Chris. 克里斯。
1 个解决方案
解决方案1
0 2010-10-10 17:59:53
You can use certificates (service / client) to do mutual authN. 您可以使用证书(服务/客户端)进行相互认证。 See http://msdn.microsoft.com/en-us/library/ms733102.aspx 请参阅http://msdn.microsoft.com/en-us/library/ms733102.aspx
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.