This article will describe how to implement WCF message level security. It will show you the required steps to create the WCF library, host it in IIS, secure with Message Level Security, client application and finally see encrypted messages using WCFTraceViewer.
Message level security encrypts request and response messages using WS-Security specifications. It encloses security credentials and claims with every message. Each message either signed or encrypted. Message Security provides end-to-end channel security and is independent of the transport protocol. In short mutual authentication and message security is delivered at the message level.
-
WCF Service with Message level security - WCF Services with IProducts Service Contract implemented.
-
Client App - Console application which acts as client application for Products WCF Service.
Following picture shows WCF Service secured messages.
For more detailed information visit - https://geeksarray.com/blog/wcf-message-level-security-by-example