User privacy can be secured in Connected Services Framework by enabling database encryption. This will prevent operators from viewing private user information that Connected Services Framework stores.
The two steps required for protecting user privacy are:
- Enabling Session Manifest encryption in the Connected Services Framework Session component by changing the EncryptSessionManifest tag in the Session.config file to true.
- Enabling Web Services Enhancements (WSE) encryption by editing the policyCache.config files for each WSE web service.