troubleshooting Question

QueryString Security in ASP.NET 2.0

Avatar of eAExperts
eAExperts asked on
.NET ProgrammingWeb Applications
4 Comments1 Solution3583 ViewsLast Modified:
For security reasons, I'm trying to create an algorithm that prevents querystrings on a website from being hackable.  To do this, I'm tacking a securely generated checksum based on the querystring value onto the end of the querystring as a page request begins using the Begin_Request event in global.asax.  I can tack the checksum onto the querystring fine, and I can prevent the user from editing the querystring, and I can even prevent the user from deleting the checksum after the page has loaded for the first time.  However, I cannot prevent the user from typing in a custom querystring on their own the first time a page loads without a checksum, which in effect defeats my security system.  What I'm assuming needs to be done here is to create a method to apply the checksum to a URL with a querystring before the page even begins loading.  Anyone have an idea how to accomplish this?
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 4 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 4 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros