Securing Hive Communication

[mbecirov]

Enhance current WCF based communication with security aspects like encrypted transport and message. Further on, the hardcoded data (ex. Ports and Addresses) should be moved to config files.

[mbecirov]

Establishing a secure channel through https based on X509 Certification Validation: Since certificate creation with tools like 'makecert' is not recommended by authors of Microsoft .NET, I'd prefer to use Windows Certification Services instead. This means, a Windows Server (DC or Certificate Server) has to publish a new certificate. This one will be used for HIVE Server to identify its clients. The fingerprint of the certificate is needed to create client certificates, but this process can be run programmatically on clients with a few limitations: Though the installation of certificates for client machines requires administrative rights, only users can be authenticated. To identify a physical machine within this certificate, additional ID's must be generated (ex. mac-address). Since certificate creation takes advantage of OS programs, we have also to consider different systems: For example WinXP uses 'httpcfg' cmd to install certificates. Using Vista OS, you've to use 'netsh http add sslcert' to do the same task...

[mbecirov]

Removed binding configuration settings in various app.config files and implemented those settings in WcfSettings.cs file as a common place for WCF settings.

[mbecirov]

Added a switch to enable/disable the use of certifications for testing purposes.

[swagner]

Milestone Iteration 3 deleted

[swagner]

Milestone Current deleted