Is BasicHttp Binding is safer for windows authentication / forms authentication in WCF ?

Posted by Kasani007 under WCF on 12/26/2016 | Points: 10 | Views : 317 | Status : [Member] | Replies : 1
Is BasicHttp Binding is safer for windows authentication / forms authentication in WCF ?




Responses

Posted by: Qutyquteshweta on: 2/15/2017 [Member] Starter | Points: 25

Up
0
Down
Hi Kasani007,
Yes you can consider it as a safe provided what options you are using. The TransportCredentialOnly security mode option passes the user credentials without encrypting the messages. Use this mode with caution as it will not protect the credentials being transmitted and they will have to be protected by some other means, such as Internet Protocol Security (IPSec). Read this: https://msdn.microsoft.com/en-us/library/ff648505.aspx?f=255&MSPPError=-2147217396

Regards,
Shweta
http://www.shwetalodha.blogspot.com

Kasani007, if this helps please login to Mark As Answer. | Alert Moderator

Login to post response