Professional Web Applications Themes

Decrypt / Encrypt Session objects - ASP.NET Security

Hi! I just want to know if it's common to decrypt a Session-Object in a ASP.NET application. My collegue says that I have not do this because the information is stored on the server. Any suggestions?...

  1. #1

    Default Decrypt / Encrypt Session objects

    Hi!
    I just want to know if it's common to decrypt a Session-Object in a
    ASP.NET application.
    My collegue says that I have not do this because the information is
    stored on the server.
    Any suggestions?


    Stefan Guest

  2. #2

    Default RE: Decrypt / Encrypt Session objects


    Yup, a Session object is stored on a server, and not in a client's browser
    (cookies). As usual, take security precautions anyways if you feel the
    need.


    Charlie Nilsson [msft]
    Visual Studio Update

    --

    This posting is provided "AS IS" with no warranties, and confers no rights.
    Use of included script samples are subject to the terms specified at
    [url]http://www.microsoft.com/info/cpyright.htm[/url]

    Note: For the benefit of the community-at-large, all responses to this
    message are best directed to the newsgroup/thread from which they
    originated.
    --------------------
    > Reply-To: "Stefan" <shogunsteffsworld.ch>
    > From: "Stefan" <shogunsteffsworld.ch>
    > Subject: Decrypt / Encrypt Session objects
    > Date: Fri, 29 Aug 2003 06:52:09 +0200
    > Lines: 8
    > X-Priority: 3
    > X-MSMail-Priority: Normal
    > X-Newsreader: Microsoft Outlook Express 6.00.2800.1158
    > X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
    > Message-ID: <eMEzQlebDHA.2588TK2MSFTNGP09.phx.gbl>
    > Newsgroups: microsoft.public.dotnet.framework.aspnet.security
    > NNTP-Posting-Host: 157.161.65.14
    > Path: cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTN GP09.phx.gbl
    > Xref: cpmsftngxa06.phx.gbl
    microsoft.public.dotnet.framework.aspnet.security: 6463
    > X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
    >
    > Hi!
    > I just want to know if it's common to decrypt a Session-Object in a
    > ASP.NET application.
    > My collegue says that I have not do this because the information is
    > stored on the server.
    > Any suggestions?
    >
    >
    >
    Charlie Nilsson [MSFT] Guest

Similar Threads

  1. How do I Use DPAPI to Encrypt and Decrypt Data (C#/VB.NET)?
    By anonieko@hotmail.com in forum ASP.NET Security
    Replies: 0
    Last Post: March 16th, 11:54 PM
  2. FormsAuthentication Encrypt/Decrypt Problem/Issue
    By Sherwood in forum ASP.NET Security
    Replies: 0
    Last Post: January 22nd, 11:09 PM
  3. Urgent Help on CAPICOM Decrypt and Encrypt
    By Mae in forum ASP.NET Security
    Replies: 2
    Last Post: January 16th, 05:05 PM
  4. 3DES encrypt in vb.net with decrypt in classic asp
    By David Lund in forum ASP.NET Security
    Replies: 0
    Last Post: December 3rd, 09:32 PM
  5. encrypt with TripleDES, decrypt with DES, doesnt work ?
    By Lech Migdal in forum ASP.NET Security
    Replies: 1
    Last Post: April 7th, 05:48 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139