Robert McLaws: FunWithCoding.NET

Public Shared Function BrainDump(ByVal dotNet As String) As [Value]

News

<script type="text/javascript"><!-- google_ad_client = "pub-4330602465258980"; google_hints = "ASP.NET, VB.NET, C#, C#.NET, WindowsForms, .NET Framework, VS2005, Visual Studio, XAML, WinFX, Windows Workflow, WPF, WCF, Atlas, NetFX3, Visual Studio Orcas"; google_ad_width = 120; google_ad_height = 240; google_ad_format = "120x240_as"; google_ad_type = "text_image"; google_ad_channel ="4997399242"; google_color_border = "B6C9E7"; google_color_bg = "EFEFEF"; google_color_link = "0000FF"; google_color_text = "000000"; google_color_url = "002C99"; //--></script> <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"> </script>
<!--
-->

You should feel free to challenge me, disagree with me, or tell me I'm completely nuts in the comments section of each blog entry, but I reserve the right to delete any comment for any reason whatsoever. That said, I will most likely only delete abusive, profane, rude, or annonymous comments, so keep it polite, please.

Blogroll

Cool .NET Articles

My .NET Tools

My Builder.com Articles

My MSKB Articles

Webservices + SSL = Good or Bad?

Right now, I have all my web services under one project, secured behind SSL. I have not decided if I want to move the to a better location, like http://webservices.interscapeusa.com, or something like that. Basically to move them out of the SSL security. Now, I'd like some opinions in terms of the effect... is the latency of SSL combined with the serialization of data into XML substantial? Is it worth it to have your data stream encrypted, or would it be better to use WSE to make sure the data is encrypted and not the whole stream? Is there something I'm not considering here? Please leave me comments, thoughts, and suggestions. Thanks.

Comments

Eric Sink said:

We use Web Services combined with SSL for SourceGear Vault, our version control system. I routinely use this setup from home over a 256K connection which is only quasi-reliable. We have another employee who uses Vault over a plain old 56k modem. In both cases the performance is quite adequate for our application. YMMV.
# July 30, 2003 8:05 PM

Jesse Ezell said:

Don't use WSE if you need to be cross platform (at least not yet). Stick with SSL for a while.
# July 30, 2003 9:22 PM

Robert McLaws said:

Thanks for the feedback guys.
# July 31, 2003 10:32 AM

Kris Williams said:

We too use SSL. However, to relieve the web servers in our farm from having to do the SSL processing, which has lead to scalability problems, we offload SSL to a pair of embedded SSL accelerators.
# August 1, 2003 7:57 PM

Vijay P said:

It depends on application requirements, if its
a B2Bi implementation, just SSL cannot help u
with Non-repudiation prespective.Else SSL is fine.

# June 15, 2004 9:50 AM