There are a couple of related questions, but I want to ask specifically for low end browsers.
We have an existing .NET MVC 2 web application and would like a scaled back, simple web interface to some of its functionality. As we are based in Africa we are targeting a wide range of very basic mobile browsers (ie not just Iphones, Android etc but middle of the range Nokias etc over gprs or edge), Besides the issues of detecting a mobile browser and routing to the appropriate controller what are the main security implications of developing a mobile web application. This will have financial transactions so security is a priority.
- Do lowered end browsers support HTTPS
- Can you reliably and securely use Forms Authentication as you would in a normal MVC Application.
- Are cookies and sessions managed in the same way by these browsers.
- Besides visual elements are there any other restrictions on what these browsers can manage.
I have done some research online but would like other people's input in case I overlooked anything.
Many Thanks