BasicHttpSecurityMode 列舉


指定可搭配系統提供之 BasicHttpBinding 使用的安全性類型。Specifies the types of security that can be used with the system-provided BasicHttpBinding.

public enum class BasicHttpSecurityMode
public enum BasicHttpSecurityMode
type BasicHttpSecurityMode = 
Public Enum BasicHttpSecurityMode


Message 2

使用 SOAP 訊息安全性來提供安全性。Security is provided using SOAP message security. 對於 BasicHttpBinding,系統會要求另行對用戶端提供伺服器憑證。For the BasicHttpBinding, the system requires that the server certificate be provided to the client separately. 此繫結的有效用戶端認證類型為 UserNameCertificateThe valid client credential types for this binding are UserName and Certificate.

None 0

傳輸期間的 SOAP 訊息是不安全的。The SOAP message is not secured during transfer. 此為預設行為。This is the default behavior.

Transport 1

系統會使用 HTTPS 來提供安全性。Security is provided using HTTPS. 而服務必須使用 SSL 憑證來設定。The service must be configured with SSL certificates. SOAP 訊息是使用 HTTPS 進行整體保護。The SOAP message is protected as a whole using HTTPS. 用戶端會使用服務的 SSL 憑證來驗證服務,The service is authenticated by the client using the service's SSL certificate. 而用戶端驗證則是透過 ClientCredentialType 來控制。The client authentication is controlled through the ClientCredentialType.

TransportCredentialOnly 4

這種模式不提供訊息完整性和機密性,This mode does not provide message integrity and confidentiality. 只會提供 HTTP 架構的用戶端驗證。It provides only HTTP-based client authentication. 請小心使用這個模式,Use this mode with caution. 它應使用在以其他方式 (如 IPSec) 提供傳輸安全性,且 Windows Communication Foundation (WCF) 基礎結構只提供用戶端驗證的環境中。It should be used in environments where the transfer security is being provided by other means (such as IPSec) and only client authentication is provided by the Windows Communication Foundation (WCF) infrastructure.

TransportWithMessageCredential 3

完整性、機密性與伺服器驗證都是經由 HTTPS 來提供。Integrity, confidentiality and server authentication are provided by HTTPS. 服務必須使用憑證來設定。The service must be configured with a certificate. 用戶端驗證是透過 SOAP 訊息安全性的方式提供。Client authentication is provided by means of SOAP message security. 當使用者是透過使用者名稱或憑證認證進行驗證,而且有現有的 HTTPS 部署來保護訊息傳輸的安全時,即適用此模式。This mode is applicable when the user is authenticating with a UserName or Certificate credential and there is an existing HTTPS deployment for securing message transfer.


此內容的安全性是指訊息保護 (完整性和機密性),以及用戶端和服務驗證。Security in this context means message protection (integrity and confidentiality) as well as client and service authentication.

實際保護需求是指 SOAP 訊息中必須簽署或簽署加密並行的特定部分,而且會透過服務合約的屬性或透過合約描述中的屬性來控制。Actual protection requirements (the specific parts of SOAP messages that must be signed or signed and encrypted) are controlled through attributes on the service contract or through properties in the contract description. 繫結上的屬性不會控制簽署或加密的內容,因為繫結只提供簽署與加密的一般功能。Properties on the binding do not control what is being signed or encrypted: a binding only delivers the general capability of signing and encrypting.

BasicHttpBinding 的預設行為是 [無]。The default behavior for the BasicHttpBinding is None.