.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

WS-Discovery and encryption

Posted By:      Posted Date: October 26, 2010    Points: 0   Category :WCF

I would like to encrypt the WS-Discovery information that is being sent out.

I am currently only using NetTcp for the protocol on the service, and have all the clients connecting up to it.

For the security on the service, I use client certificates.

Each client also has a our top level certificate installed so chain certificates work.


what I would like to do is encrypt the WS-Discovery info using the top level certifcate.

I would like to do this so anyone sniffing on our private network can not just see the info and be able to try and connect.

View Complete Post

More Related Resource Links

View State Encryption


Hi All,

Why is it that I see the same hash value generated when I use different algorithms for viewstate encryption. I have added below lines to the web.config file

<pages viewstateEncryptionMode="Always"

Foundations: Discover a New WCF with Discovery


Juval Lowy explains how the industry-standard discovery solution enables clients to discover available addresses for WCF calls at runtime, and he provides tools and helper classes to simplify the process.

Juval Lowy

MSDN Magazine January 2010

Cryptography: Employ Strong Encryption in Your Apps with Our CryptoUtility Component


When storing sensitive data, you need to be able to identify threats, determine how these threats interact with each other, and how issues can combine to constitute a vulnerability that will leave your data exposed. With a good understanding of the various cryptographic algorithms, salt, hashes, ACLs, and other available techniques, you'll be in a better position to protect your critical data.

Michael Stuart and J Sawyer

MSDN Magazine November 2004

Trustworthy Code: Exchange Data More Securely with XML Signatures and Encryption


You can sign any kind of data using XML Signature, including part of an XML document, other XML documents, or other data of any format. However, in practice, XML signatures are most frequently used to sign other data represented in XML. In this article, the authors discuss the new standard and how you can benefit from it in your apps.

Mike Downen and Shawn Farkas

MSDN Magazine November 2004

Encrypt It: Keep Your Data Secure with the New Advanced Encryption Standard


The Advanced Encryption Standard (AES) is a National Institute of Standards and Technology specification for the encryption of electronic data. It is expected to become the accepted means of encrypting digital information, including financial, telecommunications, and government data. This article presents an overview of AES and explains the algorithms it uses. Included is a complete C# implementation and examples of encrypting .NET data. After reading this article you will be able to encrypt data using AES, test AES-based software, and use AES encryption in your systems.

James McCaffrey

MSDN Magazine November 2003

.NET Remoting: Secure Your .NET Remoting Traffic by Writing an Asymmetric Encryption Channel Sink


As .NET Remoting gains popularity in the enterprise space, it must meet business demands for trustworthy computing. Remoting traffic can be secured when objects are hosted in IIS, but when they aren't hosted in IIS, custom security solutions can be developed to secure them. This article provides an in-depth look at writing channel sinks for .NET. It also details the flow of data through custom channel sinks and explains the kinds of manipulations that can be performed on that data.

Stephen Toub

MSDN Magazine June 2003

Symmetric Key Encryption on the Compact Framework

There are two main types of encryption algorithms available within the .NET Compact Framework - symmetric and asymmetric encryption. This blog entry will discuss how to utilise symmetric key encryption, but first we have to outline the difference between Symmetric and Asymmetric encryption (I will discuss asymmetric key encryption in a future blog entry).

Symmetric and Asymmetric Key Encryption
Symmetric encryption algorithms (also known as ciphers) process plain text with a secret encryption key to create encrypted data (called cipher text). The same secret key is used to decrypt the cipher text back to plain text.

Asymmetric encryption (also known as public-key encryption) is a cryptography technique that uses public and private key pairs to encrypt and decrypt data respectably. The private key is a closely guarded secret, while the public key can be freely distributed over untrusted networks. You do not worry who has your public key (you could print it on a 100foot tall banner if you so desired), but you must keep your private key secret.

URL Encryption in ASP.NET


Hi Friends

URL Encryption is important in project ...

i m using following artical for URl Encryption... It is working fine for Respons.redirect();

But not working for navigate url ....

how can this problem get resolved ...

please help me out...........


----------------------------------------------------------------------------------------------------------------------------------- Parees Solutions -----------------------------------------------------------------------------------------------------------------------------------

Encryption/Decryption OAEP

I have some code: string newKey = AmazonFeedBrowser.Security.CryptoKeyContainer.GetKeyFromContainer("KeyContainer", true); RSACryptoServiceProvider trsa = new RSACryptoServiceProvider(); trsa.FromXmlString(newKey); string tu = Convert.ToBase64String(trsa.Encrypt(Encoding.UTF8.GetBytes("Administrator"), true)); Debug.WriteLine(tu); newKey = AmazonFeedBrowser.Security.CryptoKeyContainer.GetKeyFromContainer("KeyContainer", false); trsa = new RSACryptoServiceProvider(); trsa.FromXmlString(newKey); Debug.WriteLine(Encoding.UTF8.GetString(trsa.Decrypt(Convert.FromBase64String(tu), true))); I get a cryptographic exception indicating that the OAEP padding cannot be processed. The RSACryptoServiceProvider (trsa) is initialized with just the public key. It seems to work OK with the public and private key. Is there a way to use OAEP with just the public key? Error occurred while decoding OAEP padding. System.Security.Cryptography.CryptographicException was unhandled Message=Error occurred while decoding OAEP padding. Source=mscorlib StackTrace: at System.Security.Cryptography.RSACryptoServiceProvider.DecryptKey(SafeKeyHandle pKeyContext, Byte[] pbEncryptedKey, Int32 cbEncryptedKey, Boolean fOAEP, ObjectHandleOnStack ohRetDecryptedKey) at System.Security.Cryptography.RSACryptoServiceProvider.Decrypt(Byte[] rgb, Boolean fOAEP) .

Install SQL Server2005 Error:[Native Client]Encryption not supported on the client

Product: Microsoft SQL Server 2005 -- Error 29515. SQL Server Setup could not connect to the database service for server configuration. The error was: [Microsoft][SQL Native Client]Encryption not supported on the client. Refer to server error logs and setup logs for more information. For details on how to view setup logs, see "How to View Setup Log Files" in SQL Server Books Online.

SQL Server Compact 3.5 Encryption Questions

If I create a database (.sdf file) on a server and set it to be encrypted, should it be able to be opened on a device or other PC?  In other words, is there anything in the encryption that is machine specific?  Or is it really that the password is what lets me connect and the encryption prevents it from being read by some other tool like a hex file viewer as one post suggested. I've read through lots of posts and documentation and I'm just trying to understand how encryption works and if there are any limitations or considerations and haven't found a good source. Thanks

Coldfusion AES encryption

Hi all, I saw another post on the subject but it was for a different type of encryption. Anyway, we have some values that are stored in our database using the Coldfusion ecrypt() function. We are using AES and Hex. it looks like this: <cfset Variables.THE_VALUE_ENCRYPTED = Encrypt("#ARGUMENTS.THE_VALUE#","#Variables.ENCRYPT_KEY#","AES","Hex")> The key is 24 bit.  For the life of us, we can't find any way to decrypt this in .net. Can someone offer some guidance? IT would be greatly appreciated.

Why SQL accepts both encrypted connection and non-encrypted connections when force encryption option

I have installed a certificate and have set force encryption to yes under the flags' tab of protocols' window as well as SQLnative client configuration properties but SQL Server accepts both encrypted connection and non-encrypted connections,why?(i have checked the encrypt connection of the connection properties of connect to server window). also when i run profiler, it can capture both T-SQL statements which has run against encrypted and non-encrypted connection and i expect the profiler should not be able to get the encrypted connection's T-SQL statement,am I right or something is wrong with my  configurations?--yousef

Encryption (System.Security.Cryptography) .Net 2.0

Hi, Query regarding cryptography.  I'm using .net cryptography to encrypt and decrypt files stored on disk on an asp.net website using .Net 2.0 framework.   The code (copied below) works fine to encrypt and decrypt pdf, tif, jpg, etc.  However when it comes to MS Word documents with embedded images and/or tables I get a "Bad data" error when decrypting.   The same document saved to rtf format is encrypted and decrypted without error.  Also simple formatted text documents in Word format (Office 2003) do not throw an error when being decrypted. Would someone care to point out where I'm going wrong? Thanks, code below   _________________________________    Public Sub Encrypt(ByVal Userid As Integer, ByVal FilePath As String)        'Encrypt the file        Try            Dim EncryptedFilePath As String = FilePath & "enc"            Dim clsNetEnCrypt As New NetEncrypt(User)            clsNetEnCrypt.Encrypt(FilePath, EncryptedFilePath)            'Remove the Unencrypted file  

WS-Discovery match probe response with uuid

Hello, I am trying to make a service beeing discovered by a client which is not .NET based. I could configure the server based on .NET 4 to receive the probe message properly, but the probe match reply is not as the client expect it to be. The reply look like this: <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://schemas.xmlsoap.org/ws/2004/08/addressing"> <s:Header><a:Action s:mustUnderstand="1">http://schemas.xmlsoap.org/ws/2005/04/discovery/ProbeMatches </a:Action><h:AppSequence InstanceId="1175946188" MessageNumber="5" xmlns:h="http://schemas.xmlsoap.org/ws/2005/04/discovery"/> <a:To s:mustUnderstand="1">http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous</a:To> <a:RelatesTo>uuid:1f969bbc-4d9e-4151-ad7e-60bd7fa15a9a</a:RelatesTo><a:MessageID>urn:uuid:43fefd16-83ec-4f5a-a8ef-ad65f8e9cce4</a:MessageID> </s:Header><s:Body><ProbeMatches xmlns="http://schemas.xmlsoap.org/ws/2005/04/discovery" xmlns:i="http://www.w3.org/2001/XMLSchema-instance"> <ProbeMatch><a:EndpointReference><a:Address></a:Address> </a:EndpointReference><d:Types xmlns:d="http://schemas.xmlsoap.org/ws/2005/04/discovery" xmlns
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend