+4  A: 

according to this post:

http://bytes.com/topic/asp-net/answers/861764-invalid-viewstate-system-string-decryptstringwithiv

It seems that the problem is caused by the way browsers render pages differently when the doctype is not specified.

Here is another interesting post i found on this subject, still not the solution though:

http://blog.aproductofsociety.org/?p=11

on the above page it has "Response.Cache.SetNoStore()" as a possible solution in the comments, i'll try this next to see if it helps.

John Boker  2009-02-04 15:03:11
Holy macaroni! I'd about given up on this one. I'm going to go try this out now. I'm voting it up now, but if this solves the problem, I'll be wishing I could vote this one up several times. Thanks, either way.
Beska  2009-02-04 21:23:29
Argh. No dice. I suspect that this is probably the answer that works for some people, but we're still having the same issue...(though I expect the underlying cause might still be the same...)
Beska  2009-04-20 18:31:01
Yeah, we're still having this issue here too, this is something interesting i found http://blog.aproductofsociety.org/?p=11
John Boker  2009-04-20 20:37:33
Bleh. Well, since I'm getting *nothing* on this so far, you might end up with the 200 rep by default!
Beska  2009-04-20 21:18:01
If you would, would you go to https://connect.microsoft.com/VisualStudio/feedback/ViewFeedback.aspx?FeedbackID=434997, and rate it highly so that we have an improved chance of getting this issue resolved?
Beska  2009-04-24 13:55:40
Hmm...I'm beginning to think that the bounty system has a big flaw...you're going to get the bounty, which is fine, of course...but it's also going to mark this answer as "accepted" which implies that it solved the problem (and, although it's been very useful, it doesn't actually solve the problem.) Seems like a flaw.
Beska  2009-04-27 17:03:00
Voted up the connect.microsoft.com thing, i hope an answer to this can be found.
John Boker  2009-04-27 21:12:19
Are you getting this problem in non-IE 8 situations? The more I look at this (especially considering the leads you've provided), the more I'm thinking that this is related to the way IE 8 is parsing the stream, rather than what is being returned by .NET and the web server. Have you seen this in anything other than IE 8? (I've seen an IE 7, though I'm not sure if it wasn't IE 8 in "compatibility" mode).
Beska  2009-04-30 13:30:19
@beska, you're right in that it seems more like an IE8 problem and we have seen it on IE7 too, not on firefox or safari though... maybe it is an IE8 issue and we can leave it at that?
John Boker  2009-04-30 14:13:12
Hmm. I'd like to do that...but IE 8 is probably going to be here for a while...and telling users "hey, it's not my fault, it's IE!"...true enough, but they don't care. They just want it to work. *sigh*.
Beska  2009-04-30 20:03:08
maybe IE8 will be fixed with a service pack and the issue will be solved.
John Boker  2009-05-01 12:45:49
Now *that* would be good.Have you checked how much data is missing? I was looking at someone else that posted about this and he was claiming that he was missing either 1k or 4k of data. So I checked a sample of mine, and sure enough, I was missing exactly 4096 bytes. Not sure what I can do with this information yet...but it's an interesting clue.
Beska  2009-05-06 13:49:09
I have checked and I also see exactly 4096 bytes of data missing when this exception occurs. The few times we have been able to replicate this in house it is always using IE8. Sometimes it is in IE7 compatibility mode, sometimes not.
Jim Petkus  2009-06-04 16:26:46
A: 

I am having the same problem. did you find a solution. buggin the crap out of me!!!

 2009-04-21 15:51:30
Sadly, no. I'm the same guy that asked about it on the ASP.NET forums as well, that you just commented on on Saturday. I'm hoping for the best, but am getting no real responses.
Beska  2009-04-21 15:54:15
If you would, would you go to https://connect.microsoft.com/VisualStudio/feedback/ViewFeedback.aspx?FeedbackID=434997, and rate it highly so that we have an improved chance of getting this issue resolved?
Beska  2009-04-24 13:56:10
Have you gotten this error from a user using anything other than IE 8?
Beska  2009-04-30 13:30:39
+1  A: 

What version of .NET are you compiling against? What happens if you change your build to build for an older or newer version? (not sure if this would do anything but it's worth a try)

If it's still happening, I think you should post a bug about it on Microsoft Connect. They should come back to you pretty quickly.

Mladen Mihajlovic  2009-04-24 07:02:54
Changing the .NET version: sadly, that's not an option for us...Microsoft Connect: I'll give it a shot!
Beska  2009-04-24 13:31:48
I've gotten a response that they (Microsoft Connect) are looking into the issue...hopefully they won't just say "we can't reproduce it" and close it.
Beska  2009-04-27 17:07:31
Cool. I've voted for it too. Good luck :)
Mladen Mihajlovic  2009-04-28 15:06:32
+1  A: 

Have you got any HttpHandlers or Modules that are registered in the web config that modify the rendered HTML before it's sent to the user?

These can often be:

  • Minifiying JS and CSS
  • Ensure HTML is valid

Might be worth a look.

Zhaph - Ben Duguid  2009-04-24 08:25:32
Good thought, but I'm 95% sure the answer is no. But I'll definitely ask around to double check.
Beska  2009-04-24 13:30:08
A: 

Having the same problem here http://forums.asp.net/p/1373410/3100520.aspx#3100520

 2009-04-30 20:48:03
+2  A: 

I am from the ASP.NET team -- we are looking for a customer willing to work with us on researching this issue. If anyone is able to reliably reproduce the problem by requesting their own pages and checking the logs, and is willing to work with our support group, please respond or send me a direct message. Thanks!

InfinitiesLoop  2009-06-05 19:15:47
This was written some time ago, and after considerably more investigation and corroboration with other people having the same issue, it looks like this is, in fact, an IE 8.0 issue. Still, I think I speak for everyone when we say we'd love someone directly involved to give this a look. Is there any good way to bring this issue to the attention of the IE 8 team? The Microsoft Connect forum for IE seems to be closed, and no other obvious avenues come to mind.
Beska  2009-06-08 13:11:52
Yes, a good way is to contact me if you are able to provide any repro. The fact I'm from the ASP.NET team doesn't mean the IE8 team isn't involved -- we are using whatever resources we can to figure it out, including IE folks.This connect bug is also a good place to add information:https://connect.microsoft.com/VisualStudio/feedback/ViewFeedback.aspx?FeedbackID=434997
InfinitiesLoop  2009-06-16 00:15:29
+5  A: 

Microsoft has responded to this issue:

Note is a bug in Internet Explorer 8. The Internet Explorer team has been investigating this issue.

-=Impact=- Thus far, we believe the problem has no impact on the end-user's experience with the web application; the only negative effect is the spurious/malformed requests sent by the JavaScript speculative-download engine. When the script is actually needed by the parser, it will properly be downloaded and used at that time.

-=Circumstances=- The spurious-request appears to occur only in certain timing situations, only when a META HTTP-EQUIV tag containing a Content-Type with a CHARSET directive appears in the document, and only when a JavaScript SRC URL spans the 4096th byte of the HTTP response body.

-=Workaround=- Hence, we currently believe this issue can be mitigated by declaring the CHARSET of the page using the HTTP Content-Type header rather than specifying it within the page.

So, rather than putting

[META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=utf-8"]

In your head tag, instead, send the following HTTP response header:

Content-Type: text/html; charset=utf-8

Note that specification of the charset in the HTTP header results in improved performance in all browsers, because the browser's parsers need not restart parsing from the beginning upon encountering the character set declaration. Furthermore, using the HTTP header helps mitigate certain XSS attack vectors.

NOTE: There have been reports that this problem still happens when the META HTTP-EQUIV is not on the page. We will update this comment when we have more investigation. Posted by Microsoft on 6/30/2009 at 12:25 PM

Jim Petkus  2009-07-06 13:48:55
A: 
NHenriques  2010-09-27 00:31:42

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps