客户端上的WCF服务-SSL证书
[英]WCF Service on Client Side - SSL Certificate
问题描述
What do I need to secure communication between Client, Server, AdminConsole (on another Client Computer). 
我需要什么来保护客户端,服务器,AdminConsole(在另一台客户端计算机上)之间的通信。 I've the following scenario: 我有以下情况:
AdminConsole (Client2) perform some action (call WCF Server) --> WCF Server (handle action and transmit it to the specific client via another WCF call) --> Client1 (with WCF Service in Windows Service) AdminConsole(Client2)执行一些操作(调用WCF Server)-> WCF Server(处理操作并通过另一个WCF调用将其传输到特定的客户端)-> Client1(Windows Service中的WCF Service)
Do I have to create for all Clients like Client1 a SSL certificate? 是否必须为所有客户端(如Client1)创建SSL证书? -> So for 100 clients = 100 client SSL certs? ->那么对于100个客户端= 100个客户端SSL证书? Or is it enough to secure just the WCF Server with a SSL certificate? 还是仅使用SSL证书保护WCF服务器就足够了?
2 个解决方案
解决方案1
4 2012-04-19 12:00:39
To a degree it depends on what you're trying to do. 在某种程度上,这取决于您要执行的操作。
If you simply want the client to know its connected to the right server and make the communication confidential and with guaranteed integrity (no one can change things without you knowing) then you just need an SSL cert on the server 如果您只是想让客户端知道它连接到正确的服务器,并确保通信的机密性和完整性(如果您不知道,谁都无法更改),那么您只需要服务器上的SSL证书即可
If you need the server to know who the client is so it can do audit / authorization then the client must have some way to identify itself to the server. 如果您需要服务器知道客户端的身份,以便可以进行审核/授权,则客户端必须具有某种向服务器标识自己的方式。 There are a number of options here depending on your requirements from Windows credentials, to custom usernames and password, to client certificates to SAML tokens 根据您的要求,这里有很多选项,从Windows凭据到自定义用户名和密码,再到客户端证书再到SAML令牌
解决方案2
2 已采纳 2012-04-19 11:49:11
您只需要服务器的SSL证书-每个客户端都不需要一个:)
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.