How to ensure security from Asp.net REST service and Qt application?

xalisonx · wrote on 14 Dec 2015, 08:41

What is the best way to ensure security in response to a REST Asp.net and a Qt application? I want that the service reply may not be decoded.

stephane78 · wrote on 14 Dec 2015, 11:24

Hi,

I suppose you do http requests from your Qt application (I have made a Qt software that communicate with a php rest api and I use http requests and responses).You must do https requests to have security (the url of the request must be : "https://www.....) and the response will be on https too. and if you are under linux you must allow the tcp port 443 in the iptable rule of your firewall.....(you don't need that in windows) ....

stephane78 · 14 Dec 2015, 14:16

PS:if you compile your self Qt and if you use https requests you must link Qt with openssl.

xalisonx · wrote on 14 Dec 2015, 14:16

@stephane78 Hi and thankyou! But I don't have possibility to use https. I might use some crypt algorithm?

stephane78 · wrote on 14 Dec 2015, 14:22

https requests and response are encrypted.I don't know how to do otherwise.or perhaps you must encrypt your response from your rest api with openssl or crypt32.lib and decrypt your response in your Qt software.but the more eaysiest way is to use https....

stephane78 · wrote on 14 Dec 2015, 14:26

sorry, you can encrypt/decrypt strings or files with openssl(on every OS) or advapi32.lib(under windows) if you cannot use https...

stephane78 · wrote on 14 Dec 2015, 14:40

I don't know if the c# (on the server side) can use these two libraries but the c++ can.with openssl you can encrypt/decrypt strings with aes256 for example(look at stack overflow-google), and the microsoft win32 library advapi32.lib will use the rsa algorithm.