I ve got a WCF intranet application I m working on that will have 150 clients controlled/monitored by a control application. Is it kosher to create a self-signed certificate and install this same certificate on each of the 150 clients?
I want security between the client and server but will not have authentication support from a domain controller et al.
Any pitfalls in using the same certificate on all these clients?
The pitfall is you won t really be able to distinguish between them unless they re passing some other form of identity along with the request. Plus, if one of them is compromised, you essentially have to shut your entire service off because they all use the same certificate. IMHO you want to create a client certificate per partner to avoid these problems.
The question I have though is, why aren t you just using transport security (i.e. SSL) instead of message security if all you care about is securing the communication and not providing identity?
If the certificate is compromised, you will need to revoke it, generate a new one, and install it on every machine. If each machine had their own, you would only need to revoke the one that can no longer be trusted, generate a new one, then install once.
absolutely not. Websites use the same certificate for thousands/millions of users. Only the server will be able to decrypt the information of each client.
As a learning experience I recently tried implementing Quicksort with 3 way partitioning in C#. Apart from needing to add an extra range check on the left/right variables before the recursive call, ...
I m the only developer in my company, and am getting along well as an autodidact, but I know I m missing out on the education one gets from working with and having code reviewed by more senior devs. ...
I have two EF entities. One has a property called HouseNumber. The other has two properties, one called StartHouseNumber and one called EndHouseNumber. I want to create a many to many association ...
I m using decimal type (.net), and I want to see if two numbers are equal. But I only want to be accurate to 10 decimal places. For example take these three numbers. I want them all to be equal. 0....
I m creating an STA version of the SynchronizationContext for use in Windows Workflow 4.0. I m wondering what to do about exceptions when Post-ing callbacks. The SynchronizationContext can be used ...
I ve got some code which sets up a datacontext. Often enough, the datacontext should be set to some underlying data collection, such as an ObservableCollection - but occasionally I d like to set it ...
I am building an application with C#. I managed to turn this into a single instance application by checking if the same process is already running. Process[] pname = Process.GetProcessesByName("...
NOTE I have asked the related question (with an accepted answer): How to combine DataTrigger and Trigger? I think I need to combine an EventTrigger and a DataTrigger to achieve what I m after: when ...
