tags:

views:

80

answers:

2
+1  Q: 

User account design and security...

Before I begin, I am using Ruby on Rails and the Devise gem for user authentication.

Hi, I was doing some research about account security and I found a blog post about the topic awhile ago but I can no longer find it again. I read something about when making a login system you should have 1 model for User, this contains a user's username, encrypted password, and email. You should also have a model for a user's Account. This contains everything else. A User has an Account.

I don't know if I'm explaining this correctly since I haven't seen the blog post for several months and I lost my bookmark.

Could someone explain how and why I should or shouldn't do this. My application deals with money so I need to cover my bases with security.

Thanks.

+1  A: 

Using different models to handle User (a model that handle basic authentication) and Account (a model that holds all the informations about what a user can do, how, ...) could give you some plus:

  1. storing User's data using a secondary storage system exposing higher security level
  2. restricting User's data access by other application artifacts (models, controllers, whatever)
  3. making code review and security audit easier

I tend to add personal informations (real name, phone number, ...) to the the User model while exposing operational data about the user in the Account model (nickname, bio, ...).

Luca  2010-05-30 13:27:00
Someone reading while I was typing suggested to implement point #1 installing a database in another dimension. I had to share.
Luca  2010-05-30 13:28:42
A: 

Well, it looks like a good architectural decision to keep those models separate because they refer to the different entities: User model belongs to auth system and Account model belongs to user profile management system. But it all depends. If your models are really tiny(say, 3-5 fields each), you probably couldn't have any advantages from such separation but additional headache. But, if your models are large and, say, User model is going to be used much more frequently - then you should think hard about implementing different models for clarity and performance reasons.

bsboris  2010-05-30 18:22:22
Security practices shouldn't care about how large or tiny your data or how complex your models are. A model holding my SSN or my credit card number should be far more hardened than a model holding all my public comments on this website. At least, I would.
Luca  2010-05-30 18:30:04

related questions

Encryption in C# Web-Services
How Do You Secure database.yml?
ASP.NET LocationProvider
What do you (or your company) use for wiping a machine?
Can a proxy server cache SSL GETs? If not, would response body encryption suffice?
Java: What is the best way to SFTP a file from a server
How do I call a Flex SWF from a remote domain using Flash (AS3) ?
Best way to store a database password in a startup script / config file?
Using VM to get around VPN restrictions
Best references for secure coding practices in ASP.NET and classic ASP.
Secure Memory Allocator in C++
Resolving Session Fixation in JBoss
Best Practices for securing a REST API / web service
Defensive programming
Personal Linux web server
Block user access to internals of a site using HTTP_REFERER
Is there an Unobtrusive Captcha for web forms?
My website got hacked... What should I do?
What all do I need to escape when sending a (My)SQL query?
How do you disable browser Autocomplete on web form field / input tag?
Best .NET obfuscation tools/strategy
Are there best practices for testing security in an Agile development shop?
What is the best way to avoid SQL injection attacks?
Found a critical bug, but the company doesn't care
PHP Session Security