You need to think how your querystrings are protected from someother user passing same id and seeing unauthroized information. you need url encryption or need to check every query to make sure user is authorized to see the data.
also check about antiforgery key in asp.net you need to set that for other security vulnerabilities
can design play role in security while developing web forms ?
What do you mean by design? if you are simply talking about the GUI, then the answer is No. The way you design the UI won't affect for security unless you display passwords etc. on purpose. :)
Thirisangu
Member
26 Points
187 Posts
Is design play any role insecure data transmission?
Jul 06, 2012 04:53 AM|LINK
hi everybody,
can design play role in security while developing web forms ?
Thanks in advance.
alvingeorge
Participant
925 Points
203 Posts
Re: Is design play any role insecure data transmission?
Jul 07, 2012 03:24 AM|LINK
yes,
You need to think how your querystrings are protected from someother user passing same id and seeing unauthroized information. you need url encryption or need to check every query to make sure user is authorized to see the data.
also check about antiforgery key in asp.net you need to set that for other security vulnerabilities
Ruchira
All-Star
42985 Points
7025 Posts
MVP
Re: Is design play any role insecure data transmission?
Jul 09, 2012 01:33 PM|LINK
Hello,
What do you mean by design? if you are simply talking about the GUI, then the answer is No. The way you design the UI won't affect for security unless you display passwords etc. on purpose. :)
My Tech blog | My YouTube ChannelPlease 'Mark as Answer' if this post helps you.sukumarraju
All-Star
16981 Points
2999 Posts
Re: Is design play any role insecure data transmission?
Jul 09, 2012 02:06 PM|LINK
Information leakage
Refer http://www.troyhunt.com/2012/04/graphic-demonstration-of-information.html
Web Security cheat sheet
Application Architecture Guide 2.0
My Blog
Twitter