wsHttpBinding Message Security

Hot Topic

Problems with August CTP ReportViewer WebControl
ParameterFieldCurrentValueException when exporting or printing crystal report
Referencing BuildEngine.Engine in custom Task
Running Analyze from VSS 8 (VS2005 Beta 2) finds many many many errors in my VSS DB
Installation problem - reboot required before installing pre-requisites
MSBuild conditional import and Visual Studio IDE
Where is "Field Definitions Only" Data Source?
How can I bind a ConverterParameter value ?
applying smart indentation rules
crystal reports 9 cutting off lines

Visual Studio

Speed of XAML
Continue prompt when running analyze over a network
VS.net2005 & VS.net2003 unknown error
Access violation exception in PresentationHost.exe
Document storage
Where did Favorites folders go in Document Explorer v8?
Security policy does not permit customization to run
X509 Certificates between a web service and another service
Lose XAML in Feb CTP?
BamlParseException Error at element 'StaticExtension' in markup file '' : Could not load type 'System.Runtime.CompilerServic

wsHttpBinding Message Security

Hi,

I have a service setup that uses the following binding.

<bindings>

<wsHttpBinding>

<binding name="NewBinding">

<security mode="TransportWithMessageCredential">

<message negotiateServiceCredential="false" />

</security>

</binding>

</wsHttpBinding>

</bindings>

Now when this service runs the contents of the soap message are signed. I was just wondering if it is possible to just send the Kerberos token for Message authentication and not worry about signing and encryption.

Answer this question

wsHttpBinding Message Security

  • Harsimrat

    In this mode, the only things that should be signed at the SOAP layer are the wsa:To header and the wsu:Timestamp. We need to sign something at the SOAP layer in order to cryptographically bind the kerberos token to the message.

    Gudge
  • wsHttpBinding Message Security
Answer this question