• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 516
  • Last Modified:

DFS-password in clear text

While calling a DFS service, the username and password is passed in header as clear text. Anyone who intercepts the SOAP request will be able to see the password.

Is there a way that password can be passed in an encrypted format?

 

Thank You
0
ank5
Asked:
ank5
1 Solution
 
Tomas Helgi JohannssonCommented:
        Hi!

Consider using SOAP over SSL Thats the standard way. ;)
http://www.java2s.com/Code/Java/Web-Services-SOA/DoingthecommunicationusingHTTPS.htm
http://java.sun.com/developer/technicalArticles/WebServices/security/

Hope this helps.

Regards,
    Tomas Helgi
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now