Design Considerations

Previous page
Table of content
Next page

Check

Description

Security decisions should not rely on client-side validations; they are made on the server side.

The Web site is partitioned into public access areas and restricted areas that require authentication access. Navigation between these areas should not flow sensitive credentials information.

The identities used to access remote resources from ASP.NET Web applications are clearly identified.

Mechanisms have been identified to secure credentials, authentication tickets, and other sensitive information over network and in persistent stores.

A secure approach to exception management is identified. The application fails securely in the event of exceptions.

The site has granular authorization checks for pages and directories.

Web controls, user controls, and resource access code are all partitioned in their own assemblies for granular security.



Previous page
Table of content
Next page
Improving Web Application Security. Threats and Countermeasures
Improving Web Application Security: Threats and Countermeasures
ISBN: 0735618429
EAN: 2147483647
Year: 2003
Pages: 613
Authors: Microsoft Corporation
BUY ON AMAZON
Metrics and Models in Software Quality Engineering (2nd Edition)
Adobe After Effects 7.0 Studio Techniques
Making Sense of Change Management: A Complete Guide to the Models, Tools and Techniques of Organizational Change
Pocket Guide to the National Electrical Code(R), 2005 Edition (8th Edition)
Java All-In-One Desk Reference For Dummies
User Interfaces in C#: Windows Forms and Custom Controls
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy