As a relative newcomer to both web and MVC, I am looking for a

Question

0

Asked: May 11, 20262026-05-11T09:16:26+00:00 2026-05-11T09:16:26+00:00

As a relative newcomer to both web and MVC, I am looking for a

0

As a relative newcomer to both web and MVC, I am looking for a good summary of security best practices that I should implement.

The site will be public facing with ‘moderately sensitive data’ (meaning we can’t get sued, but probably wouldn’t make many friends if the data got out!) and will have the following security steps taken: a: Forms/membership authentication and authorization b: Parameterized queries to prevent sql injection. c: Automatic timeout with x min of inactivity c: SSL for client to server encryption

What else do you recommend?

*Securing IIS and the network don’t fall under my domain, so I’m more interested in the things I need to do to the software.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

score 0 · Answer 1 · 2026-05-11T09:16:26+00:00

2026-05-11T09:16:26+00:00Added an answer on May 11, 2026 at 9:16 am

If you are using cookies to recognize users, be sure to use an arbitrary token (such as a GUID) to store on the client for identification. I’ve seen too many websites that store my email address or username in my cookie… just have to change it to another!
Write your software so that it can run under medium trust.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

As a relative newcomer to both web and MVC, I am looking for a

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply