Many aspects of an ASP.NET MVC application need to be secure. This chapter has discussed identifying the visitor and determining the kinds of actions they can take within your website. You have also learned about the process of encrypting data to make it more difficult to understand if an unauthorized user gains access to the information. However, there are many areas that have not yet been covered.

Communications between the user and the server is one. By default, communication between a client and the server occurs in clear text, which is easy for a hacker to access. SSL encrypts information sent to and from the server, making the information much more secure. In addition, salting and hashing ...