Chapter 10. Web Services Security
This chapter describes how to develop and apply authentication, authorization, and secure communication techniques to secure ASP.NET Web services and Web service messages. It describes security from the Web service perspective and shows you how to authenticate and authorize callers and how to flow security context through a Web service. It also explains, from a client-side perspective, how to call Web services with credentials and certificates to support server-side authentication.
Web Service Security Model
Web service security can be applied at three levels:
Platform/transport level (point-to-point) security
Application level (custom) security
Message level (end-to-end) security
Each approach has different strengths ...
Get Building Secure Microsoft® ASP.NET Applications now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.