hi all, I have a question regarding login facilities and secured access for a web app I have been landed with. Basically my boss want's to have customers access online details from our external hosted website. I have been pretty much told I'm doing it and we aint outsourcing, I do have a few months time frame to get my head around it though.
Breifly I want a login with email address and password. I've browsed through some stuff and read about hashing and salting the password etc. My main concern is the tightness of security, which probably leads to my question "What is the most secure wary of accomplishing this on a hosted web solution in asp.net and MSSQL".
Pointers to resources/books would be good.
I have created a tester which takes the inputs queries the Stored Procedure and returns a 1 or 0 for good/bad login. The inputs are on an SSL secured page too.
I want this app as secure as possible, basically I'd hire someone to do it but that aint an option. I aslo would quite like to hang on to my job so I don't want customers seeing each others data.
I would assume there is a tightly secured method of accomplishing this and I respect that not everything is hack proof.
Start Free Trial
