Make my desktop application communicate over the web...

[lidds]

I have developed a desktop application that connects to a MS SQL server over a network. One of my clients wants a third party company to be able to use my desktop application but connect to the MS SQL database in my client’s office. Obviously my client could open the ports to the SQL server to make this accessible from the web, but this is a huge security issue and obviously not one I want to even recommend. Is there a way that I can make my desktop application securely communicate over the web to the SQL database?

I know probably making my application web based would be the most common answer however this would be a huge amount of development and also my client needs this relatively quickly.

Any help and advice would be appreciated.

Thanks

Simon

 

[jebenson]

I think your best, most secure option is to suggest (read: strongly encourage/demand) that your client set up a site-to-site VPN for this application. Why reinvent the wheel when there is a solution that is mature, well-known and designed specifically for situations such as this?


I used to rock and roll every night and party every day. Then it was every other day. Now I'm lucky if I can find 30 minutes a week in which to get funky. - Homer Simpson

Arrrr, mateys! Ye needs ta be preparin' yerselves fer Talk Like a Pirate Day!

 

[gmmastros]

+1 for VPN suggestion and not reinventing the wheel.

-George
Microsoft SQL Server MVP
My Blogs
SQLCop
twitter
"The great things about standards is that there are so many to choose from." - Fortune Cookie Wisdom