Securing .NET Web Services with SSL: How to Protect “Data in Transit” between Client and Remote Server

Securing .NET Web Services with SSL: How to Protect “Data in Transit” between Client and Remote Server

by Slava Gomzin
Publication Date: 09/05/2015

Share This eBook:

  $7.99

Booklet for developers and security professionals on how to implement SSL in order to protect data transmission between .NET client and server. The guide contains examples of the client application code and certificate validations in C#.


Topics include: what is SSL certificate and how to use it to secure .NET Web Services, how to create server and client test certificates, implementing SSL in server and client applications, extra validations of server certificate on client side, and more (Article: ~3,300 words).


Table of Contents includes:

Introduction

Vulnerabilities Due To Insecure Communication

Difference between SSL and TLS

Securing Data Transmission with SSL

Different Levels of Security Provided by SSL

SSL Implementation Modes

Server Certificate Only

Server and Client Certificates

SSL Certificates

Certificate Issuing Methods

Self-Signed Certificate

Certificate Issued Using Self-Signed Root Certificate

Certificate Issued through Local Certificate Authority

Certificate Issued through Public Certificate Authority

Test Certificates

Server Test Certificates

Creating Test Certificate Authority

Creating Server Test Certificate for Specific Server Host Name

Creating Server Test Certificate for localhost

Creating Standalone Self-Signed Test Server Certificate (without CA Root)

Obtaining Test Server Certificate from Public Certificate Authority

Going to Production

Client Test Certificate

Creating Client Test Certificate using Root CA Certificate

Implementing SSL on Server

Web Server Configuration

Server Application Configuration

Server Application Code Changes

Implementing SSL on Client

Client Application Configuration

Client Application Code Changes

Additional Server Certificate Validations Performed by Client

Testing

Conclusion

Resources

About the Author


Slava Gomzin, CISSP, PCI ISA, PCIP, ECSP, Security+ has more than 15 years of professional experience in software development and security including

12 years in application development for retail industry and electronic payments,

10 years in .NET and SQL Server development,

6 years in application security and PCI compliance.

Slava Gomzin is Security Architect at Retalix USA. He lives in Dallas, Texas.

ISBN:
9781476064451
9781476064451
Category:
Computer security
Publication Date:
09-05-2015
Language:
English
Publisher:
Slava Gomzin

This item is delivered digitally

You can find this item in:

Show more Show less

Reviews

Be the first to review Securing .NET Web Services with SSL: How to Protect “Data in Transit” between Client and Remote Server.