WCF 3.5 Security Practices at a Glance

J.D. Meier, Jason Taylor, Prashant Bansode, Carlos Farre, Madhu Sundararajan, Steve Gregersen.

The following are practices for Web services created with Windows Communication Foundation (WCF) 3.5.:

Auditing and Logging

Authentication

Authorization

Configuration Management

Deployment Considerations

Exception Management

Hosting

Impersonation/Delegation

Input Validation

Message Security

Proxy Considerations

Sensitive Data

Transport Security

X.509 Certificates

Contributors and Reviewers

  • External Contributors and Reviewers:
  • Microsoft Consulting Services and PSS Contributors and Reviewers:
  • Test team: Rohit Sharma, Chaitanya Bijwe, Parameswaran Vaideeswaran.
  • Edit team: Dennis Rea.
  • SEO team: Rob Boucher.

Last edited May 8, 2008 at 7:39 AM by prashantbansode, version 11

Comments

No comments yet.