How Secure is the Information when Passing Between ASP and ASP.NET?{6}


The article I read talks about how user can transfer information between systems using ASP.NET in multiple ways; however, many are complicated, or insecure. For example, many data transfer methods pass information in plain text, which makes the data vulnerable to both interceptions. However, some methods were introduced in this article that interact with data used in both ASP and ASP.NET applications. According to the author, developer can achieve this by using the same methods of encrypting and data-packaging in ASP.NET as in classic ASP in other words, by calling .NET code via COM from classic ASP pages. The article further explained, how ASP and ASP.NET data sharing works. According to the article, there are two most common ways to transfer data in an ASP/ASP.NET. The first is a system in which servers transfer data based on a key provided by clients. This unique key identifier allows the two servers to contact each other directly and exchange the necessary information. However, the way second method was explained in this article was slightly difficult to comprehend. It says that instead of passing a unique token through the client, the data itself will be encrypted and transferred via the client to its destination server. Which was slightly unclear for me to fully understand how? However, the article explained that DataManager. DLL is the central part of this type of application that manages the setting and encryption of key value pairs. The article further explained that the Inside of the DataManager.dll file, the Encryption class contains all the methods needed to encrypt data that will be transferred via the client.

This article relates to class because it explains the topic we were discussing in the class.  I believe this article is really informative for individuals who like to see the whole picture.  I personally learned a lot from this article. I think everyone should read this article just get some knowledge about ASP.Net. I believe this article might be helpful for our next project. So I recommend everyone to take a look at it.

Roberts, B. (2006, March 10). Passing Information Securely Between ASP and ASP.NET . DevX – Your Information Source for Enterprise Application Development . Retrieved May 20, 2012, from http://www.devx.com/webdev/Article/308