WS parameters & return values data integrity

G

Guest

Hello All

I have built a web service that accepts and sends binary data encoded as base64 strings
What I need to know is if the .NET framework infrastructure checks the integrity of the dat
being passed arround or do I need to do it in the application layer

I must point out that the web service clients are PDAs running on the .NET CF and communicatin
via GPRS with the Web Service. So the big question is do I rely upon the underlying network layers o
do I do the integrity checks myself adding checksums and stuff like that

Thanks in advance
 
C

casey chesnut

there are no direct checks.
indirectly it would fail if the SoapMessages are not valid XML,
and it probably fails if the HTTP RequestLength is not correct;
but somebody could definitely intercept the message and mess with your
base64.

i would do checksums at a minimum.
would probably also add a timestamp, nonce, with some keyed hash.

you might also consider using DIME too.
http://www.brains-N-brawn.com/spWse

Thanks,
casey
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

WebService access issue on GPRS/3G 5
Parsing Base64 encoding 5
C# or eVC++ ? 5
Problems accessing a web service 2
Consuming WS on full vs compact framework - XmlException 10
Embedded C++ or .NET CF? 5
Smart client application in .NET CF 5
.NET CF slowly leaking memory? 3

Top