Encryption and decryption for banking API request response.

Question

Hi i am creating a wcf service for banking application which will consumed by many clients. i want to know which is the best mechanism for security. currently i and doing AES encryption and decryption for request and response with some key and my client will also have that key for encyptsion and decryption. is that enough? any other way? or something more need to do? anybody has any point on it. please let me know. Thanks

Prakash Reddy · Answer

Hey Go for public and private certificate key Encryption and decryption mechanism. by using public key all clients will encrypt and by using private key we can decrypt that data. use BouncyCastle dll for Encryption and decryption method.

Mangesh Gaherwar · Answer

hey arvind please go for the AES encryption scheme we have successfully implemented in one of our application an it is secure an reliable

Akshay Phadke · Answer

you need to install certificate on server for encryption and decryption mechansim for WCF service . Refer this link for more https://social.msdn.microsoft.com/Forums/sqlserver/en-US/e419def2-7697-4a3f-a20a-0c3c15c08b73/how-certificate-works-with-wcf-to-encrypt-decrypt-data?forum=wcf