Message Protection
.png "patterns & practices Developer Center")
- When should I use message security?
- When should I use transport security?
- How do I protect my message when there are intermediaries routing the message?
- How do I protect my message when there are multiple protocols used during message transit?
When should I use message security?
Message security encrypts each individual message to protect sensitive data. Transport security secures the end-to-end network connection to protect the network traffic.
Use the following criteria to decide whether to use message security:
- Intermediaries. Message security supports scenarios with intermediaries or protocol transition.
- Encryption flexibility. Message security allows you to encrypt part of a message while leaving other parts in cleartext format.
- Binding limitations. Message security does not work with netNamedPipeBinding.
- Secure conversations. Secure conversations only works with message security.
- Authentication limitations. Message security does not work with Basic or Digest authentication.
Additional Resources
- For more information on message protection, see Message Security in WCF.
- For more information on choosing a transport, see Choosing a Transport.
When should I use transport security?
Message security encrypts each individual message to protect sensitive data. Transport security secures the end-to-end network connection to protect the network traffic.
Use the following security criteria to decide whether to use transport security:
- Point-to-point. Transport security supports point-to-point communication and does not support intermediary scenarios or protocol transition.
- Streaming. Transport security can support streaming data scenarios.
- Binding limitations. Transport security does not work with wsDualHttpBinding.
- Authentication limitations. Transport security does not work with negotiation, username, or Kerberos direct authentication.
- Performance. Transport security may provide better performance than message security.
Additional Resources
- For more information on choosing a transport, see Choosing a Transport.
- For more information on message security, see Message Security in WCF.
How do I protect my message when there are intermediaries routing the message?
Use message security to protect your message when there are intermediaries routing your message. Message security protects message contents even if the message must travel between many points before reaching the intended recipient.
Additional Resources
- For more information on choosing a transport, see Choosing a Transport.
How do I protect my message when there are multiple protocols used during message transit?
Use message security to protect your message when there are multiple protocols used during message transit. Because each individual message is encrypted, message protection is transport-agnostic and can be used in protocol transition scenarios.
Additional Resources
- For more information on choosing a transport, see Choosing a Transport.