.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

Secure Sockets Layer: Protect Your E-Commerce Web Site with SSL and Digital Certificates

Posted By:      Posted Date: August 21, 2010    Points: 0   Category :ASP.Net

Security is one of the most important factors in the future growth of e-businesses. Making sure that communications remain secure between customers and the Web server is a critical issue. Secure Sockets Layer (SSL) is the standard that secure Web sites are built upon today. This article presents an overview of SSL-based Web security, explaining such fundamental concepts as digital certificates and their distribution, encryption, and the proper configuration of Microsoft Internet Information Services (IIS). Acquiring a certificate, installing it, and configuring IIS for SSL are outlined in a step-by-step process.

John Papa

MSDN Magazine April 2001

View Complete Post

More Related Resource Links

Security Briefs: Protect Your Site With URL Rewriting


Learn the numerous ways in which you can rewrite URLs to defend against common Web vulnerabilities.

Bryan Sullivan

MSDN Magazine March 2009

Cutting Edge: Building A Secure AJAX Service Layer


This month Dino builds a service layer that authenticates users of Silverlight 2 and ASP.NET AJAX services to prevent illegal access to sensitive back-end services.

Dino Esposito

MSDN Magazine September 2008

how protect my web site from this error


hi ,

I have question in security asp.net

for exemple I have page name


when I go to this url


there aren't problém but the problém when I add ' to id=9

localhost/users.aspx?id=9' , I have so an error that may help hacker

my question how I can protect my script from thix error like this forum

when you add ' you will redirect to another page error.aspx

and thanks for all

E-Commerce Site

Hello All, I was getting ready to get custom ASP.NET e-commerce site and wondering which is better option: ASP.NET 4.0 Web Forms or ASP.Net MVC 3.0? I appreciate your help and if you can let me know why one is better over the other. Even though it is new site, eventually it will be highly trafficked site.   Thanks for all your help. Karan

how to secure our web site no any hacking chance to any one


how to secure our web site no any hacking chance to any one

pdf files in document library cause second login on secure sharepoint site


in somewhat of a twist to the previous kb 943280 I have clients accessing my wss 3.0 site over ssl.

they attempt to go into their document libraries and are able to receive the ms type documents and their associated icons show up.

however in attempt to get to the pdf documents they're asked to login again, and if they bypass the login they can access the pdf file fine, it just doesn't draw the pdf icon.

I do have the icon correctly installed, for me as site owner the icon displays fine and I do not get asked to login again.

What I have seen with the other users is that they're using Vista home and/or business with the 256bit encryption while I am using the 128 bit encryption.

This site was also previously on a hosted site, not requiring ssl, but no one had the second login issue which makes me think I am missing a server option that should be on my machine.

Thanks in Advance!

how to secure an asp.net web site against Phishing Frame Attacks


hello ,

how to secure an asp.net web site against Phishing Frame Attacks?

Need help creating Secure Site that will require client certificate



I am trying to create a secure web service that will require certificate from clients. I'm not working with WCF, just a web service. This is what I did so far:

On the default web site, where I have other web sites that are not secured, I've configured one of the virtual directories in the following way: Directoy Security->Secure Communication -> Edit I've Tagged Require SSL, and Require client certificate. Then, I've created a Many to One Mapping rule that maps a certificate, by CN to a certain user account.

When I try to access the web site, with a client application (https://SERVERNAME/VIRTUALDIRECTORY/ASMXFILE.asmx) I get the following message :

"Unable to connect to the remote server"

Ofcourse I send a proper certificate.

What am I doing wrong?


10 Mistakes To Avoid In Setting Up An E-commerce Site

According to SearchEngineJournal.com, the main things to avoid in setting up an e-commerce site are: 1. Complicated Checkout 2. Bad Payment Gateway 3. Information Overload 4. No Product Information 5. Not having a good return policy & terms 6. Not Securing Your Site 7. No Products on home page 8. Slow Loading Speed 9. Poor SEO & Marketing 10. Not Up Selling Read the complete blog post here: http://www.searchenginejournal.com/10-mistakes-to-avoid-in-setting-up-an-e-commerce-site/28221/......(read more)

"Could not establish secure channel" when chaining services with certificates


I am currently developing two web services which use mutual authentication with X.509 certificates. This works perfectly over one hop, but if I try to chain over a second hop I get this error:


"Could not establish secure channel for SSL/TLS with authority 'machine.mydomain.com'."

I have my client and both services all executing on the same machine in a test environment. I have IIS 7.5 installed, created a new website and apppool, and published both services as applications under the same site. Both services have https bindings set up in IIS using the same certificate. I have both the client certificate and the server certificate installed on the machine, and the CA is installed in the Trusted Root CA store. These are all installed under LOCAL_MACHINE.

From my client, I am able to call ServiceA, and everything works perfectly. In ServiceA, I have several unit test cases which call ServiceB - these also work with no problem. But, if I run Client, call ServiceA, and then ServiceA calls ServiceB, authentication between the two services fails. I have tried copying binding configuration from my unit test app.config to ServiceA's web.config, but that doesn't seem to make any difference.


I can post the configuration data from web.config if anyone wants to see it, but given the fact that calls from Client => S

Changing the graphics on the home page of a SharePoint site

When you create a site in Microsoft Windows SharePoint Services by using the default Team Site template, the home page includes two default graphics. A Windows SharePoint Services graphic appears in the body of the page, and a picture of a house in a circle appears near the site title. You can change these graphics to customize your site. Changing the smaller graphic requires a Windows SharePoint Services compatible Web page editor

Take a tour of your SharePoint site

What is a SharePoint site for?
A SharePoint site is a Web site that provides a central storage and collaboration space for documents, information, and ideas. A SharePoint site is a tool for collaboration, just like a telephone is a tool for communication, or a meeting is a tool for decision making. A SharePoint site helps groups of people (whether work teams or social groups) share information and work together. For example, a SharePoint site can help you:

Coordinate projects, calendars, and schedules.
Discuss ideas and review documents or proposals.
Share information and keep in touch with other people.

Six easy ways to customize your site using Web Parts in SharePoint

Becoming familiar with Web Part customization techniques gives you a range of page-customization choices. For example, you can customize your site's home page so that it displays the specific information that your team needs. You can rearrange the list items on the home page, add lists, and even change the images on the home page. As you become more familiar with Web Part Page customization techniques, you can build interactive Web Part Pages that makes the data in lists more dynamic and useful, and you can add new Web Parts that provide access to external data and Web services.

Tips to Improve Your ASP.NET Web site performance

ASP.NET has been developed with lots of features which makes developer life easy. Start from ViewState, PostBack, Server Controls , User Controls and etc. All of them can make your web development experience fun and easy, but improper use of them can cause your site performance slowdown. Most of the controls generate overhead to the client and server. Therefore in this article, I I will list out about things you can do and don't to improve your ASP.NET website performance.

SharePoint Application and Site Pages - Part 1 of 2

In this first part of the two part series, Steven covers the differences between Site and Application pages in SharePoint 2007, why each may be used in various circumstances, and prepares for the construction of a menu located application page. After a brief introduction he examines the concept of Site Pages and Application Pages separately in detail with supported screenshots.

SharePoint Application and Site Pages - Part 2 of 2

As the second article in a two part series, Steven examines the attributes and details of a SharePoint 2007 application page, including the construction and feature deployment of the same page based project. Since this is a WSS level objective, as opposed to MOSS, you will not need MOSS to work with the code included in this project. Windows Server 2003, WSS, and Visual Studio 2005 are all that is needed, with no additional add-ons. He provides a detailed analysis of each step involved in the creation and deployment of the project.

The best site i ever seen

See this site and enjoy the feature and designs which as i think you never seen ...

Thanks !!!!
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend