How to make web service secure

[jack]

Hi all
I have have a web service in c$ which was a pretty easy task, but the
task seemd to be difficult when came to security..
i have had a vb6 application which sends xml file and gets a request in
xml format.
guys is there any idea how can i make a secured connection request and
response in this .
Please help .

 

[jeremiah johnson]

Use HTTPS instead of HTTP.

or use TripleDES or some other encryption to encrypt and decrypt the xml
going each way.

 

[Michael Nemtsev]

Hello Jack,

See WSE, WebServerExtention, especially WS-Security, WS-Trust

J> Hi all
J> I have have a web service in c$ which was a pretty easy task, but the
J> task seemd to be difficult when came to security..
J> i have had a vb6 application which sends xml file and gets a request
J> in
J> xml format.
J> guys is there any idea how can i make a secured connection request
J> and
J> response in this .
J> Please help .
---
WBR,
Michael Nemtsev :: blog: http://spaces.msn.com/laflour

"At times one remains faithful to a cause only because its opponents do not
cease to be insipid." (c) Friedrich Nietzsche

 

[Guest]

Jack
You can secure web services by using Role Based Secuirty, You can take
advantage of Windows Authentication (if your web service is running on
interanet). You can also use SSL (Https) for secure communication. Moreover
you can secure particular parts of your messege by encrpyting them. For this
purpose you can use SOAP EXTENSIONS and override ProcessMessege function and
can encrypt data AfterSerialize event.

 

[jack]

Thanks for the reply
im trying to implement soap by passing userid and password in the
header,
right now im just trying it, lets see wether it works
Thanks .