Security Articles

C# Security – Using Hashing

Hashing   is a method of one-way encryption which is ideal for storing passwords in a database, as you may never require a decrypted version. To authenticate some data, simply hash what the user input and compare it with the data stored in the database. A hash code will always be a small fixed size […]

Read more

Protect Your ASP.NET App From SQL Parameter Injection

Securing your ASP.NET web app from SQL Injection attacks paramount in the design of any ASP.NET app. Say you are viewing a transaction of customer #448, andyour URL looks something like www.myapplication.com/customer.aspx?customerID=448. What is to stop customer 448 from typing in 449,  and viewing another customer’s transaction details? The situation can even escalate into typing […]

Read more

.NET Security in C#

Since my company does a lot of .NET consultancy, one of ourrecent projects required that file i/o access be denied if the user runningthe application did not have administrator privileges. A lot has been written aboutthe command line utility caspol.exe, however, this can seem a little overthe top and quite complex when considering code groups, […]

Read more

C# Code Access Security

In today?s fast growing Information Technologyworld, security is a major concern. Security is important not just toauthenticate users but also to authorize their actions. Common businessscenarios where we need more control over security are 1. To restrict the user?s access to the application, based on their identity 2. To restrict the user?s access to protected […]

Read more

Role Based Security In .NET

.NET Framework offers code access security androle-based security to help address security concerns about mobilecode. This article covers some of the features available in role-basedSecurity in the .NET Framework. Before getting into further details of.NET security features, lets walk through some of the key concepts in.NET security. Permissions The common language runtime (CLR) allows codeto […]

Read more

C# Security Features

Security is an important aspect of software development nowadays, and C# in its very architecture has this feature, present in various forms. There are some holy-water droplets to drink before eating the topic to self-satisfaction. And those include – Permissions – Type-safety – Security Policy – Principal – Authentication – Authorization The .NET Framework offers […]

Read more