推荐的方法来保护 Web 服务?
[英]Recommended ways to secure a webservice?
问题描述
Do you know what are the best practices in securing webservices?
您知道保护 Web 服务的最佳实践是什么吗?
What I need is some security added in the header of the soap message.我需要的是在 soap 消息的 header 中添加一些安全性。 (ssl is not an option) (ssl 不是一个选项)
2 个解决方案
解决方案1
1 2011-07-13 20:33:42
Maybe you can add the也许你可以添加
X-Magic-Security-Dust: true
header to your requests. header 满足您的要求。
Seriously though, read Bruce Schneier and maybe repost with clarification.不过说真的,请阅读布鲁斯·施奈尔(Bruce Schneier) ,并可能在澄清后重新发布。
What's going to be different about the state of Internet and network security three years from now?
I think we're finally past the era where people believe in magic security dust, that all they need to do is buy the right set of products and their network will be imbued with the property of "secure."
解决方案2
0 已采纳 2011-07-13 20:33:12
You can use XML-Encryption defined by W3C to make sure that your WS Messages stay confidential.您可以使用 W3C 定义的 XML-Encryption 来确保您的 WS 消息保密。 Theres also an XML-Signature Standard, also by W3C, which ensures Integrity.还有一个 XML 签名标准,也是由 W3C 制定的,它确保了完整性。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.