Solved

Web-Based Application device detection / security

Posted on 2014-02-12
7
178 Views
Last Modified: 2014-02-25
I have an ASP.NET(VB.NET) application we restrict users to Internet explorer due to the use of ActiveX.  ActiveX allows us to check a tag on the computer which we use to allow access to the system and it is necessary on some situations to interact with hardware. We recently redeveloped the app to be more responsive only to find out that a whole bunch of our clients are still running XP which will not allow an IE upgrade past IE 8 so our new responsive design will not render correctly due to the lack of support for HTML5.  

Most of our hardware vendors have redeveloped or have new technologies or updated SDK's that will allow our users to interface with the necessary hardware (in most cases) via Chrome for instance. Where this poses an issue for us is we still want to restrict access to computers that have been authorized.

With that said my question is;
 
Is there a way to tag a machine by installing or placing some sort of tag that can be read from any browser so that we can specifically identify computers allowed to access our system and is browser independent. The ideal scenario would be to allow access to the local machine (maybe through some sort of install or java applet) to uniquely identify it and post back to our database that it is authorized to access their instance of our application? I don't have a budget for token based authentication nor do I want to manage client/server certificates.

Thank you in advance for any input
0
Comment
Question by:jonesy_33
  • 4
  • 2
7 Comments
 
LVL 2

Expert Comment

by:DualCool
ID: 39854872
Why are you so worried about security when you aren't worried about having a browser certificate?

**I sincerely hope you aren't storing any sensitive data on the system you are building.
0
 

Author Comment

by:jonesy_33
ID: 39854920
I am using SSL certificate, but not client side certificates
0
 
LVL 2

Expert Comment

by:CubeOver
ID: 39858101
Non-exportable Computer certificates seem to be the answer to your worries.
There is nothing to manage - you can enforce enrollment via a GPO.

Or, are you omitting that these clients are NOT connected to Active Directory you can control?

If these are standalone oddball machines, you may look at something like CPUID functions - sorry I don't know how to access those from ActiveX.

I still think that manual certificate management is easier. Just be sure your issuing system has a certificate expiry reminder feature.
0
Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

 

Author Comment

by:jonesy_33
ID: 39860428
They are of the standalone oddball variety I will have to look into the CPUID functions, but the goal here is to get away from ActiveX, maybe using Java Applets. Just not sure yet
0
 
LVL 2

Expert Comment

by:CubeOver
ID: 39860643
Another goal may be to get rid of obsolete OS (Windows XP)?
With Windows 7 you get the new IE and HTML5.
0
 

Accepted Solution

by:
jonesy_33 earned 0 total points
ID: 39874804
I cannot force my clients to get rid of XP and 1 of my goals is to achieve browser independence. I guess I will go back to the drawing board on this one.
0
 

Author Closing Comment

by:jonesy_33
ID: 39885107
There were no other valid solutions offered up by the community and since I am forced to either leave it open on accept my own post I choose the later.
0

Featured Post

How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

A long time ago (May 2011), I have written an article showing you how to create a DLL using Visual Studio 2005 to be hosted in SQL Server 2005. That was valid at that time and it is still valid if you are still using these versions. You can still re…
Citrix XenApp, Internet Explorer 11 set to Enterprise Mode and using central hosted sites.xml file.
This Micro Tutorial will demonstrate how to add subdomains to your content reports. This can be very importing in having a site with multiple subdomains.
Shows how to create a shortcut to site-search Experts Exchange using Google in the Chrome browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch the Search Engine Menu: In chrome, via you…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question