The 7 Things I Know About Cyber Security After 25 Years | April 2024
Basics of WCF and its Security
1. Getting started with
Windows Communication Foundation &
its Security
By,
Ratan Sharma
ratans@mindfiresolutions.com
2. Agenda
→ History of Web Services
→ Service Orientation
→ Introduction to WCF
→ WCF Architecture
→ End points
→ Demo
→ WCF Security
→ Security support for different bindings
→ Security modes
→ Demo
3. COM
Component object model
DCOM
Distributed COM
.Net Remoting
COM +
Mechanism for communicating between applications and components
running on the Windows platform for same computer.
Mechanism for communicating between applications and components
running on other computers over a network.
Integration with Microsoft Transaction Server so applications could
group operations on components together into transactions.
A client application could access a remote object hosted by a remote
server application as if it were running locally, inside the client
application
Mechanism for communicating between applications and components
running on the Windows platform for same computer.
Inter Process Communication Technologies
5. BALANCE between push and pull.. (Common Data format & Common Protocol)
Choice: How do you want to get info?
How do you want to deliver it?
6. What is WCF ?
Windows Communication Foundation (WCF) is a technology
for developing applications based on service-oriented
architecture (SOA).
7. The four tenets of service orientation
Service compatibility is determined based on policyService compatibility is determined based on policy
Services share schema and contract, not classServices share schema and contract, not class
Services are AutonomousServices are Autonomous
Boundaries are ExplicitBoundaries are Explicit
8. Why WCF ??
→ Multiple protocol support
→ Full duplex communication
→ Different hosting environment
→ Different serializer option
→ Messages can be queued using persistence queuing. As a
result, no delays occur, even under high traffic conditions.
11. How to reach your service ?
Address : URI of the WCF service
- Transport Scheme
-Server location
- Port
- Path
Binding : Defines how the WCF service
handles the request
- BasicHttpBinding, NettcpBinding etc
Contract : Defines what public data and
interfaces the WCF service
provides to the client.
- Service contract, Data Contract, Fault
Contract, Message Contract
End Point
15. Security Mode
5 possible security modes
→ None
→ Transport
→ Message
→ Both (only msmq support this)
→ TransportWithMessageCredential
→ TransportCredentialOnly
16. Bindings supporting Transport, Message and mixed mode
Binding Transport Mode? Message Mode? Mixed Mode?
BasicHttpBinding Yes Yes Yes
WSHttpBinding Yes Yes Yes
WSDualHttpBinding No Yes No
NetTcpBinding Yes Yes Yes
NetNamedPipeBinding Yes No No
NetMsmqBinding Yes Yes No
MsmqIntegrationBinding Yes No No
wsFederationHttpBinding No Yes Yes
17. Message over a Channel
Message
Message
Message
Message
$%$^$^
$%#$%
W$#@%#
$^$%^
$%^^
@$#%
$%^^
@$#%
WCF Client
WCF Service
EndPoint Message
Message
WCF Client
WCF Client
WCF Client
WCF Client
WCF Service
EndPoint
WCF Service
EndPoint
WCF Service
EndPoint
WCF Service
EndPoint
WCF Service
EndPoint
WCF Service
EndPoint