You are developing a Windows Communication Foundation (WCF) service. One of the
parameters used with the service operations is a security token. The security token is not
sensitive. The monitoring software tracks security tokens and can read tokens in clear text
only. The company security policy requires that you validate all clear text data passed over
the corporate network. You need to ensure that the service verifies that the security token is
not changed during transit. What should you do?
A.
Implement IEndpointldentityProvider in the message contract class.
B.
Implement ISecureConversationSession in the message contract class.
C.
For all the security-sensitive members, set the ProtectionLevel parameter of the
MessageBodyMember or MessageHeader attribute to Sign.
D.
For all the security-sensitive members, set the ProtectionLevel parameter of the
MessageBodyMember or MessageHeader attribute to EncryptAndSign.
Explanation: