Is SSL Enough?

  • Thread starter Thread starter rockdale
  • Start date Start date
R

rockdale

Hi, All :

I have a Pocket PC appl and the appl calls a web service by sending XML
data. About securing the data, is it enough if I implement SSL on my
web server. I did a search and found that everybody was talking about
encrypt the xml data and then send to web service and decrypt the data
on the web server side. Are there any reason we have to write our own
encryption? I thought SSL is enough or is there any limit for .Net CF?

Thanks a lot
 
rockdale said:
Hi, All :

I have a Pocket PC appl and the appl calls a web service by sending XML
data. About securing the data, is it enough if I implement SSL on my
web server. I did a search and found that everybody was talking about
encrypt the xml data and then send to web service and decrypt the data
on the web server side. Are there any reason we have to write our own
no

encryption? I thought SSL is enough or is there any limit for .Net CF?

Thanks a lot
Click to expand...

Sure, SSL is against datahacking. While protecting against unauthorized
access can be managed by personal certificates or by a login mechanism...
These things are separe from encrypting the session data (by SSL)
 
Back
Top