Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

How do you secure a C# Web Service

Posted on 2010-01-09
2
Medium Priority
?
287 Views
Last Modified: 2013-11-26
Hi everyone,

I am wanting ideas on how to secure a webservice. Basically we have a software activations webservice that applications we create talk to to verify the user's licence key and activate the software. However if anyone were to discover the web address to the service (which isnt really that hard seeing .net stores it in a plain text config file) they would be able to interact with our activations server.

I guess in a situation where you know that the service will only be visible from a few locations you could lock IIS down to a few IP Addresses but in this situation we are expecting connections from anywhere.

Can anyone offer some advice?

thanks,

Xavier,
0
Comment
Question by:locdang
2 Comments
 
LVL 96

Accepted Solution

by:
Bob Learned earned 2000 total points
ID: 26278629
I would look into Web Services Enhancements (WSE).  There are a few resources, like these that should help you get a start securing a web service with WSE.

An introduction to Web Service Security using WSE - Part I
http://www.codeproject.com/KB/webservices/WS-Security.aspx

Protect Your Web Services Through The Extensible Policy Framework In WSE 3.0
http://msdn.microsoft.com/en-us/magazine/cc163650.aspx
0
 
LVL 1

Author Closing Comment

by:locdang
ID: 31675137
This looks great, thanks for your help.
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here I am going to explain creating proxies at runtime for WCF Service. So basically we use to generate proxies using Add Service Reference and then giving the Url of the WCF service then generate proxy files at client side. Ok, what if something ge…
Wouldn’t it be nice if you could test whether an element is contained in an array by using a Contains method just like the one available on List objects? Wouldn’t it be good if you could write code like this? (CODE) In .NET 3.5, this is possible…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…
Is your OST file inaccessible, Need to transfer OST file from one computer to another? Want to convert OST file to PST? If the answer to any of the above question is yes, then look no further. With the help of Stellar OST to PST Converter, you can e…
Suggested Courses
Course of the Month14 days, 5 hours left to enroll

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question