Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

https remoting

Posted on 2004-08-05
10
Medium Priority
?
363 Views
Last Modified: 2012-05-05
Hi,

I have a remoting application which uses a binary formatter over tcp, this isn't hosted within IIS, but within my own application server.

I am releasing the application to a client who want to connect over the web.

I'm a little concerned about security, i.e. can someone hack the application by using the open port ?? or is there some kind of handshaking between legitimate clients trying to connect.

Ideally, I'd like to encrypt the data being sent. We have an SSL certificate, is there any way this can be used to encrypt the data.

I've done some web-searches, but can only find info on using SSL when hosted within IIS, which isn't an option.

Thanks
Smg.
0
Comment
Question by:smegghead
  • 5
  • 2
8 Comments
 
LVL 37

Accepted Solution

by:
gregoryyoung earned 2000 total points
ID: 11730461
0
 
LVL 37

Expert Comment

by:gregoryyoung
ID: 11730470
smegghead: please email me per other question ... I forget to put my pants on in the morning sometimes when I go to work :)
0
 
LVL 10

Author Comment

by:smegghead
ID: 11730486
I did email you, tried three different addresses (tried to work them out from your profile).. got two bounce backs, so assumed the 3rd worked.

Mine is on my profile also, so you might be better emailing me !! :-)

Chrs
Smg.
0
Restore individual SQL databases with ease

Veeam Explorer for Microsoft SQL Server delivers an easy-to-use, wizard-driven interface for restoring your databases from a backup. No expert SQL background required. Web interface provides a complete view of all available SQL databases to simplify the recovery of lost database

 
LVL 37

Expert Comment

by:gregoryyoung
ID: 11730501
gregoryyoung@ee
0
 
LVL 37

Expert Comment

by:gregoryyoung
ID: 11730515
0
 
LVL 4

Expert Comment

by:Eran_R
ID: 11730728
The .NET remoting framework provides a lot of extensibility options.

Almost all extensions to the .NET remoting involve implementating IMessageSink.
.NET remoted calls go through the following chain:

[Client side]
call -> TransparentProxy -> RealProxy -> EnvoySinkChain -> ClientContextSinkChain -> ClientChannelSinkChain

<transport>

[Server side]
ServerChannelSinkChain -> ServerContextSinkChain -> ServerObjectSinkChain -> StackBuilderSink -> method call

You can choose to implement some sort of encryption on one of these sink chains, for example, client and server channel sinks (symmetric).

I must say that implementing such stuff requires a good understanding of .NET remoting infrastructure.
The following books are pretty good, and contain some examples of customized sinks:

"Microsoft .NET Remoting" - Microsoft Press - ISBN:0735617783
"Advanced .NET Remoting (C# Edition)" - Apress - ISBN:1590590252 (Contains encryption example)

Since you need some special action performed on both server side and client side, proxies are not the solution. You need to use message sinks to acheive what you want.

The website www.idesign.net also contains some resources and sample code for .NET remoting specialization (go to the Downloads section)

Hope this helps
0
 
LVL 4

Expert Comment

by:Eran_R
ID: 11750146
I stumbled upon an article on MSDN that answers your needs exactly!

here's the link:
Part I - http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dndotnet/html/remsspi.asp
Part II - http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dndotnet/html/remsec.asp (What you need)

Part II contains an example of using custom channel sinks to add security to .NET remoting
0
 
LVL 37

Expert Comment

by:gregoryyoung
ID: 11750212
Eran_R please read my last post...

0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For those of you who don't follow the news, or just happen to live under rocks, Microsoft Research released a beta SDK (http://www.microsoft.com/en-us/download/details.aspx?id=27876) for the Xbox 360 Kinect. If you don't know what a Kinect is (http:…
A long time ago (May 2011), I have written an article showing you how to create a DLL using Visual Studio 2005 to be hosted in SQL Server 2005. That was valid at that time and it is still valid if you are still using these versions. You can still re…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?
Suggested Courses
Course of the Month14 days, 9 hours left to enroll

578 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question