RE: FormsAuthentication.Encrypt and SSL
From: ASP.NET (VijaySachanMCPASPNET_at_discussions.microsoft.com)
Date: 07/27/04
- Next message: Ibrahim Shameeque: "RE: Cast from type 'DBNull' to type 'Boolean' is not valid"
- Previous message: Jorge Ribeiro: "RE: easy one.... turn auto-complete off"
- In reply to: Gawel: "FormsAuthentication.Encrypt and SSL"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 27 Jul 2004 10:21:46 -0700
Yes, It depends on your requirement but Form authentication is most suitable for intranet applications.
Using SSL is more suitable for internet applications as it provides more security
-- Vijay Sachan MCP - ASP.NET "Gawel" wrote: > Hajo, > in book about security in ASP.NET I read that > if I use Form authentication and need to make its > data secure then I need to use SSL for all pages, not only for > e.g. login page. It is interesting because form ticket is encrypted with > FormsAuthentication.Encrypt and it seems that there is no need > for additional ssl usage. Am I right ? > > Gawel >
- Next message: Ibrahim Shameeque: "RE: Cast from type 'DBNull' to type 'Boolean' is not valid"
- Previous message: Jorge Ribeiro: "RE: easy one.... turn auto-complete off"
- In reply to: Gawel: "FormsAuthentication.Encrypt and SSL"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
