Is SSL Enough?

R

rockdale

Hi, All :

I have a Pocket PC appl and the appl calls a web service by sending XML
data. About securing the data, is it enough if I implement SSL on my
web server. I did a search and found that everybody was talking about
encrypt the xml data and then send to web service and decrypt the data
on the web server side. Are there any reason we have to write our own
encryption? I thought SSL is enough or is there any limit for .Net CF?

Thanks a lot
 
E

Egbert Nierop \(MVP for IIS\)

rockdale said:
Hi, All :

I have a Pocket PC appl and the appl calls a web service by sending XML
data. About securing the data, is it enough if I implement SSL on my
web server. I did a search and found that everybody was talking about
encrypt the xml data and then send to web service and decrypt the data
on the web server side. Are there any reason we have to write our own
no

encryption? I thought SSL is enough or is there any limit for .Net CF?

Thanks a lot
Click to expand...

Sure, SSL is against datahacking. While protecting against unauthorized
access can be managed by personal certificates or by a login mechanism...
These things are separe from encrypting the session data (by SSL)
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

SSL Connections 2
passing x509 client certificate to ssl web service 2
Web Service PHP and SSL 1
SSL encrypting 1
SSL Socket Connection 1
SSL socket library recommendations 2
RSACryptoServiceProvider Encrypt/Decrypt 1
Connection to SQL Server 2005 with encryption from a CF 2.0 device. 3

Top