Hello All
I am using MVC and Nhibernate in my application. How can i improve security of my application using proper authentication and authorization?
Right now i am using asp.net mvc authentication.
+1
A:
I would suggest you to scan your site for vulnerabilities using some of these great solutions.
Sarfraz
2009-12-31 09:46:04
thanks @@Sarfraz..
Pankaj
2009-12-31 09:55:30
@Pankaj: you welcome
Sarfraz
2009-12-31 09:59:01
+1
A:
The question is frankly too open. "Proper" authentication and authorization depends on what your application is doing and the data it accepts, stores and outputs. For example twitter's authentication strategy is very different to that of your bank's on-line banking service.
There's also more to it than authentication and authorization, there's XSS, CSRF, Cryptography, Information Leaks and more. Start with the OWASP Top 10 and go from there. However this will not show you the code, because you can't be generic about this, it always needs tailored to the application being secured.
blowdart
2009-12-31 10:02:47