FOR FASTER ANSWERS, CHECK THESE LINKS BEFORE YOU EMAIL US:

Authors/Publishers

How Smashwords works
- Where are my ebooks?
How to format ebooks
- Smashwords Style Guide
- Troubleshooting
Problem uploading
ISBNs
Distributing via Smashwords
Earnings & payment schedules

Readers

Received an email from us, or wondering if something changed at Smashwords?
Check our 'Site Updates' for the latest news.

Have a question not already answered in the links at left or on our FAQ? Ask it below.

Your E-mail:
Subject:

Securing .NET Web Services with SSL: How to Protect “Data in Transit” between Client and Remote Server

By Slava Gomzin

Booklet for developers and security professionals on how to implement SSL in order to protect data transmission between .NET client and server. The guide contains examples of the client application code and certificate validations in C#.

Topics include: what is SSL certificate and how to use it to secure .NET Web Services, how to create server and client test certificates, implementing SSL in server and client applications, extra validations of server certificate on client side, and more (Article: ~3,300 words).

Table of Contents includes:
Introduction
Vulnerabilities Due To Insecure Communication
Difference between SSL and TLS
Securing Data Transmission with SSL
Different Levels of Security Provided by SSL
SSL Implementation Modes
Server Certificate Only
Server and Client Certificates
SSL Certificates
Certificate Issuing Methods
Self-Signed Certificate
Certificate Issued Using Self-Signed Root Certificate
Certificate Issued through Local Certificate Authority
Certificate Issued through Public Certificate Authority
Test Certificates
Server Test Certificates
Creating Test Certificate Authority
Creating Server Test Certificate for Specific Server Host Name
Creating Server Test Certificate for localhost
Creating Standalone Self-Signed Test Server Certificate (without CA Root)
Obtaining Test Server Certificate from Public Certificate Authority
Going to Production
Client Test Certificate
Creating Client Test Certificate using Root CA Certificate
Implementing SSL on Server
Web Server Configuration
Server Application Configuration
Server Application Code Changes
Implementing SSL on Client
Client Application Configuration
Client Application Code Changes
Additional Server Certificate Validations Performed by Client
Testing
Conclusion
Resources
About the Author

Slava Gomzin, CISSP, PCI ISA, PCIP, ECSP, Security+ has more than 15 years of professional experience in software development and security including
12 years in application development for retail industry and electronic payments,
10 years in .NET and SQL Server development,
6 years in application security and PCI compliance.
Slava Gomzin is Security Architect at Retalix USA. He lives in Dallas, Texas.

Available ebook formats: epub mobi pdf html

First 20% Sample: epub mobi (Kindle) Online Reader

Price: $4.99 USD

Buy Add to Library Give as a Gift

How gifting works

Create Widget

Category: Nonfiction » Computers & Internet » Security
Category: Nonfiction » Computers & Internet » Client-server computing
Published: April 18, 2012
Words: 3,720
Language: English
ISBN: 9781476064451

Tags: security web services net c sharp programming ssl application securiy communications security

About Slava Gomzin

Slava Gomzin is an information security enthusiast and full-stack technologist. He is the author of multiple publications on information security and technology including books "Hacking Point of Sale" (Wiley, 2014) and the just-published "Bitcoin for Nonmathematicians" (Universal Publishers, 2016).
Slava is VP of Information Security and Technology at Pieces Technologies, an innovative start-up that deploys cutting edge technology to improve clinical and community health outcomes. Before Pieces Tech, he was Director of Information Security at Parkland Center for Clinical Innovation (PCCI), a noted scientific research and development nonprofit corporation. Prior to joining PCCI, Slava was a Security and Payments Technologist at Hewlett-Packard, where he helped create products that are integrated into modern payment processing ecosystems using the latest security technologies. Before HP, he worked in various information security and software development positions at Retalix, a Division of NCR Retail. Slava currently holds CISSP and other security certifications. He blogs about information security and technology at www.gomzin.com.

Learn more about Slava Gomzin

Also by This Author

Reviews of Securing .NET Web Services with SSL: How to Protect “Data in Transit” between Client and Remote Server by Slava Gomzin

Review

This book has not yet been reviewed.

Report this book