WCF provides comprehensive security features in three main areas: transfer security, authentication and authorization of clients, and auditing.
Security Modes of WCF:
WCF can provide authentication, privacy, and integrity for messages by using two mechanisms:
You can specify the security for a binding by setting its SecurityMode property. By default, the BasicHttpBinding has no security configured. Other HTTP bindings use WS-Security, and TCP and Named Pipe bindings use Windows security.
You can use the .NET PrincipalPermission attribute to restrict access to an operation based on name, role, or authentication status.
|For More Info Please Visit: WCF Resources Page|