custom forms authetication - mvc 5


I would like to implement login and register functionality for my web application. How to maintain the password security in the DB? Also I plan to develop a mobile app for my web application in future so I should be able to use the same to authenticate users from mobile too? I will have 100,000 users when my application is in production.

Can somebody provide me pointers in this direction?  I am using sql server 2014, MVC 5 , entity framework.

Thanks for your time.
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Duy PhamFreelance IT ConsultantCommented:
You can simply integrate and user ASP.NET Membership Provider with your MVC application. But don't use Clear password format.

If you want to support authentication using Google/Facebook/Twitter/LiveID/etc., you could make your application to be claims-aware.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
The preferred model is to now use Identity Providers as opposed to Membership Providers (
The ASP.NET membership system was introduced with ASP.NET 2.0 back in 2005, and since then there have been many changes in the ways web applications typically handle authentication and authorization. ASP.NET Identity is a fresh look at what the membership system should be when you are building modern applications for the web, phone, or tablet.
Further reading:,,

We recently had to implement a new API on one of our products and we implemented ASP.NET Identity. We have a legacy system, with other software interfaces apart from just the API and we needed to maintain that user store on the new ASP.NET Identity. These articles really helped us (probably in order of how useful they were for us):
JyozealAuthor Commented:
MlandaT, sorry I did not see your comment when I awarded the solutions. somehow I was able to view only first one.  However I found about identity when I was reading about member ship provider link by Duy Pham. Thank you for the links. Appreciate it.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.