Click here to Skip to main content
15,888,003 members
Search within:


How enable certificates on WCF whithout buying one from CA
Please Sign up or sign in to vote.
4.00/5 (1 vote)
I have followed the step-by-step to enable X509 using makecert.exe which is pretty easy.
But I can not buy certificates from Certificate Authority (e.g. VerySign). Then, I am looking for altenatives and I would like to know some suggestions for my scenarios. I started to google and I found some articles about Microsoft Certificate Services. Is that only for repository or can I use as tool for generating certificates and then avoid to spend money with CA?
Now I am reading an excelent article (WCF Client Server Application with Custom Authentication, Authorization, Encryption and Compression) to improve my knowledge about security but this article is more complex than I really need. I am just looking for a way to implement security my WCF web services, maybe using public and private keys, AES and RSA but without envolving CA. Could someone give me suggestions? Maybe some article which show how implement security over WCF without buying certificates from CA?
Posted
Add a Solution
Comments
Sergey Alexandrovich Kryukov 31-Jan-13 10:48am    
You can use self-signed certificate, but you should understand that it is not related to security of your application/service (unless you also require personal certificates from each user, which is also possible). It only creates some trust in the users: a user can see that your service is certified and can check it up with the authority. If you provide self-signed one, you should think if you need a certificate at all or not.
—SA
DemeCarv 31-Jan-13 12:37pm    
Sergey, first of all, thank you. Could you explain what you mean by "unless you also require personal certificates from each user". I understand that if I use self-signed certificate I wouldn't reach realy secury communication. But this phrase you wrote seems to exist some workaround for who can't buy certificates. And other related question: beyond the certificate option, which else option to secury the communication between wcf client and the server?

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

  Print Answers RSS
Top Experts
Last 24hrsThis month
Related Questions
How secury wcf communication whithout paid certificates
Buying a server for WCF
One WCF service using multiple certificates
Verify CA certificate using certgetcertificatecontextproperty
Problem in using certificates in wcf nettcp
Wcf encryption/decrpytion using both server and client certificates
WCF Settings in IIS having certificate
how to use ssl certificate in wcf application
WCF enabled Silverlight app won't work on some machines
Obtain a Digital Certificate from an Online Certificate Authority (CA)

Advertise
Privacy
Cookies
Terms of Use
Last Updated 31 Jan 2013
Layout: fixed | fluid
Copyright © CodeProject, 1999-2024
All Rights Reserved.

Web04 2.8:2024-04-02:1

CodeProject, 20 Bay Street, 11th Floor Toronto, Ontario, Canada M5J 2N8 +1 (416) 849-8900