ASP.Net Hacked.. Again!{3}


This week’s article touches on ASP.net and Microsoft’s support of the resource. According to the PC world author, many web app frameworks are vulnerable to a denial-of-service attack targeting the way they handle what is called “hash tables. The author goes on to describe this flaw and what hash tables influence, “Hash tables are used to store and retrieve data rapidly, allocating the data to different slots in the table based on the results of a calculation — the hash function — performed on the data itself. Ideally, the hash function would return a different result, or hash, for each possible item of data, but this is not achievable in practice, so implementations of hash tables have to deal with ‘hash collisions,’ where two or more different pieces of data generate the same hash.” The knowledge of how has tables are calculated by a web application allows it to be infiltrated by anyone with the correct set of skills. Looking to how they resolved this, Microsoft immediately put out a patch to hopefully end this issue for good.

I love the influence technology has on today’s society but it also has its drawbacks with the sense of security you have with today’s applications. Seeing what we can do with the very limited knowledge we have gained through our core courses, it’s incredible to see how we can apply it in the real world. Seeing more and more articles about companies being hacked or affected negatively by technology is discerning for a college student entering such an industry. I hope to see a difference throughout the next few years and hopefully gain knowledge on how to prevent such attacks from happening.

Reference:

Flaw in web app frameworks pushes microsoft to patch asp.net promptly. (n.d.). Retrieved from http://www.pcworld.com/businesscenter/article/247092/flaw_in_web_app_frameworks_pushes_microsoft_to_patch_aspnet_promptly.html