惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

WordPress大学
WordPress大学
T
Threatpost
阮一峰的网络日志
阮一峰的网络日志
美团技术团队
F
Fortinet All Blogs
The GitHub Blog
The GitHub Blog
月光博客
月光博客
V
Visual Studio Blog
T
Tailwind CSS Blog
Stack Overflow Blog
Stack Overflow Blog
博客园 - 聂微东
Jina AI
Jina AI
J
Java Code Geeks
Martin Fowler
Martin Fowler
大猫的无限游戏
大猫的无限游戏
Recorded Future
Recorded Future
C
Check Point Blog
腾讯CDC
N
Netflix TechBlog - Medium
aimingoo的专栏
aimingoo的专栏
罗磊的独立博客
Hacker News: Ask HN
Hacker News: Ask HN
SecWiki News
SecWiki News
博客园 - Franky
Hacker News - Newest:
Hacker News - Newest: "LLM"
N
News | PayPal Newsroom
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
S
Security @ Cisco Blogs
W
WeLiveSecurity
The Last Watchdog
The Last Watchdog
Cloudbric
Cloudbric
F
Full Disclosure
The Cloudflare Blog
Y
Y Combinator Blog
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
Recent Commits to openclaw:main
Recent Commits to openclaw:main
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Google DeepMind News
Google DeepMind News
MongoDB | Blog
MongoDB | Blog
S
Schneier on Security
Schneier on Security
Schneier on Security
Spread Privacy
Spread Privacy
L
LINUX DO - 热门话题
AI
AI
N
News and Events Feed by Topic
T
Tor Project blog
P
Palo Alto Networks Blog
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
H
Hackread – Cybersecurity News, Data Breaches, AI and More
G
Google Developers Blog

博客园 - 灰灰狼

架构与设计概要 IoC概要 需求分析概要 接上文,支持并发数量的完美版本 消息队列并发处理基类-简化版 2013年5.28~7.27 Microsoft FTE 微软面试总结 String Format for DateTime 多语言建议 multi-language 问题观 New life I would like About that task 基于证书的WCF安全开发详解 asp.net缓存(20100804完善版) - 灰灰狼 - 博客园 呼唤程序员精神——关于我今天发起的讨论的总结 asp.net mvc下实现窗口不关闭,就让Session不过期 正确的产品开发策略
about wcf
灰灰狼 · 2010-08-25 · via 博客园 - 灰灰狼

1.       Why we use WCF

In fact , we can use Web Service or WCF. We select WCF because the WCF contains many advantages that WS doesn’t contain, such as

(1)    Extension ability

(2)    Better asp.net integration

(3)    Can be independent from IIS

(4)    Stateful & transaction supported

(5)   

2.       Why we talk about Certificate

We talk about certificate not specially for WCF, It’s a secure solution, can be used in all communication cases, such as Website, Web Service and WCF. We use it for it is the best secure solution and is supported by WCF very well. It’s not very complex in use, but only need little time to understand and explain.

What is SSL? It’s a certificate use case. Firstly, there is a CA, CA has a Root Certificate,  and the website has a sub-certificate from CA. Why you trust the website? Because you believe the CA. Why you believe the CA, because you have the CA Root Certificate in Trusted Root Certification Authorities on your PC. This authentication process is implemented in Transfer Layer(https). Commonly, SSL is used to authenticate Server.

WCF based Certificate is like SSL, but WCF can implement authentication in application layer and do more detail control. The theory is like the SSL, but we need to do two-way authentication, not only the client authenticates the server, but also the server authenticate the client. So we need deploy certificate both in server & client. That’s all, and is not very complex.

Certificate can be from a CA(we can deploy a CA Server ourselves). In developing period, we can use makecert.exe command to create root certificate & sub certificate.

My example is a pure technical solution, but it simulates our real solution partly, Adam and me has confirmed this.

3.       I’ll translate my email later, please give me some time.