Upgrade your Internet Experience
Microsoft.com
Welcome Sign in
.NET Framework Developer Center
Click to Rate and Give Feedback
MSDN
MSDN Library
.NET Development
.NET Framework 3.5
WCF Feature Details
Security
This page is specific to
Microsoft Visual Studio 2008/.NET Framework 3.5

Other versions are also available for the following:
Common Security Scenarios

The topics in this section catalog a number of possible client and service security configurations. Configurations vary according to a number of factors. For example, whether a service or client is on an intranet, or whether the security is provided by Windows or transport (such as HTTPS).

In This Section

Internet Unsecured Client and Service
An example of a public, unsecured client and service.

Intranet Unsecured Client and Service
A basic Windows Communication Foundation (WCF) service developed to provide information on a secure private network to a WCF application.

Transport Security with Basic Authentication
The application allows clients to log on using custom authentication.

Transport Security with Windows Authentication
Shows a client and service secured by Windows security.

Transport Security with an Anonymous Client
This scenario uses transport security (such as HTTPS) to ensure confidentiality and integrity.

Transport Security with Certificate Authentication
Shows a client and service secured by a certificate.

Message Security with an Anonymous Client
Shows a client and service secured by WCF message security.

Message Security with a User Name Client
The client is a Windows Forms application that allows clients to log on using a domain user name and password.

Message Security with a Certificate Client
Servers have certificates, and each client has a certificate. A security context is established through Transport Layer Security (TLS) negotiation.

Message Security with a Windows Client
A variation of the certificate client. Servers have certificates, and each client has a certificate. A security context is established through TLS negotiation.

Message Security with a Windows Client without Credential Negotiation
Shows a client and service secured by a Kerberos domain.

Message Security with Mutual Certificates
Servers have certificates, and each client has a certificate. The server certificate is distributed with the application and is available out of band.

Message Security with Issued Tokens
Federated security that enables the establishment of trust between independent domains.

Trusted Subsystem
A client accesses one or more Web services that are distributed across a network. The Web services access additional resources (such as databases or other Web services) that must be secured.

Reference

Related Sections

See Also


© 2007 Microsoft Corporation. All rights reserved.
Last Published: 2009-12-09
Tags What's this?: Add a tag
Community Content   What is Community Content?
Add new content RSS  Annotations
Where's the IIS-Secured Web Service with BasicHttp Binding page?      digger69   |   Edit   |   Show History
The TOC shows "IIS-Secured Web Service with BasicHttp Binding" but no page.
Where's the IIS-Secured Web Service with BasicHttp Binding page?      Adamx97   |   Edit   |   Show History
The TOC shows "IIS-Secured Web Service with BasicHttp Binding" but no page.
The TOC shows "IIS-Secured Web Service with BasicHttp Binding" but no page.
The TOC shows "IIS-Secured Web Service with BasicHttp Binding" but no page.
The TOC shows "IIS-Secured Web Service with BasicHttp Binding" but no page.
The TOC shows "IIS-Secured Web Service with BasicHttp Binding" but no page.

yes, this is needed!
Tags What's this?: Add a tag
Flag as ContentBug
© 2010 Microsoft Corporation. All rights reserved. Terms of Use | Trademarks | Privacy Statement
Page view tracker