Chapter 6. Securing Your Application

Security is a kind of death.

Tennessee Williams

Security means a variety of things to users and developers. In a web context, security is related to preventing injection of malicious code in the running application. Likewise, security relates to actions aimed at preventing disclosure of private data. Finally, security relates to building applications (and sections of an application) that only authenticated and authorized users can access.

The aspect of security that application developers deal with more frequently is certainly the authentication and authorization of users. In fact, although they are based on a number of common patterns, the first two aspects of web security need to be tackled while keeping an ...

Get Programming Microsoft® ASP.NET MVC now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.