Reputation: 10953
How to secure RESTful calls from Silverlight?
I have a Silverlight application that I am sending/receiving sensitive data to some WCF RESTful endpoints. I know that someone can reverse engineer the Silverlight application to gain any keys so encryption/decryption might not be an option.
Are there any ways to secure the data apart from using HTTPS?
Upvotes: 1
Views: 222
Answers (2)
Reputation: 14585
Plenty, just depends on how much work you want to do. You can use signing via x509, encryption of the message using x509, request restriction (only allow access from xyz domain or ip) or a combination of all/some of those options.
Some of those will be less secure then others givin silverlight can be reversed so you might try obfuscation on your silverlight app.
Upvotes: 1
Reputation: 14585
You might also try RIA services if you don't need to expose the services to anyone else or this is on the same server.
Upvotes: 1
Related Questions
- User/Pass Authentication using RESTful WCF & Windows Forms
- Implementing Security in REST?
- WCF Rest Authentication
- What are my options for authentication for WCF rest?
- The best way for authentication Silverlight client with WCF service
- Authentication approaches for WCF REST
- How to secure a WCF restful service?
- WCF RESTful API
- How to do authentication on a WCF 4 RESTful service?
- REST WCF Authentication