Page 255 - DCAP312_WEB_TECHNOLOGIES_II
P. 255

Unit 12: Security and Membership



               •  The  ASP.NET  helps  control  access  to  site  information  by  comparing  authenticated   Notes
                 credentials, or representations of them, to NTFS file system permissions or to an XML file
                 that lists authorized users, authorized roles (groups), or authorized HTTP verbs.
               •  When  we  install  ASP.NET,  the  Machine.config  file  for  server  includes  configuration
                 elements that specify SQL Server membership providers.
               •  The membership feature greatly reduces the amount of code we have to write to authenticate
                 users at Web site.
               •  The logon page prompts the user to supply credentials, typically a user name and password.

               •  Avoid mixing personalization with authentication. If we only need to identify users for
                 personalization reasons, a simple user name inside a cookie is sufficient.
               •  ASP.NET implements authentication through authentication providers, the code modules
                 that contain the code necessary to authenticate the requestor’s credentials.

            12.4 Keywords

            Access-denied: If a request to ASP.NET application returns the error, “Denied Access to Directory
            Name directory. Failed to start monitoring directory changes.
            Cookie: The topics in this topic describe how to create cookies in ASP.NET Web applications.
            Cookies are small text files that the server and browser exchange on each page request, and
            that we can use to store information that can help we customize your application for each user.

            Cryptography: Means and methods for the transformation of data in order to hide its information
            content, prevent its undetected modification, or prevent its unauthorized use.

            Event Handle: Event is an action or occurrence like mouse click, key press, mouse movements,
            or any system generated notification. The processes communicate through events.
            Internet Information Services (IIS): IIS (Internet Information Server) is a group of Internet servers
            (including a Web or Hypertext Transfer Protocol server and a File Transfer Protocol server) with
            additional capabilities for Microsoft’s Windows NT and Windows 2000 Server operating systems.
            Lightweight: In information technology, the term lightweight is sometimes applied to a program,
            protocol, device, or anything that is relatively simpler or faster or that has fewer parts than
            something else.

                          1. Write the steps to authenticate a web form.
                          2. Search about the authentication modes.

            12.5 Review Questions

               1.  What is the ASP.NET IIS Security?
               2.  Simply Provides a ASP.NET security.

               3.  Provides an ASP.NET infrastructure and subsystem relationships, as related to security.
               4.  What is the ASP.NET Authentication?

               5.  Give the Security Relationship Between IIS and ASP.NET.
               6.  Discuss the Factors in Choosing an Authentication Method.
               7.  Explain Authentication types by ASP.NET.




                                             LOVELY PROFESSIONAL UNIVERSITY                                   249
   250   251   252   253   254   255   256   257   258   259   260