New Security Features in ASP.NET 2.0
Here is a list of new security features in ASP.NET 2.0:
- Significant security advantages on Web sites that use forms authentication
- Membership services that manage a database of user accounts
- A role manager for managing role membership for users
- A provider model that gives you complete control over the implementation of the Membership and Role services and cookieless forms authentication
- The interactive configuration file editor that's built right into the IIS management console
- The new Web Site Administration Tool to create new users and roles, and to control access to pages in a Web application.
- The new Login controls
- The new Membership API
- Hashed passwords
Read Stephen Walther's article New Security Features in ASP.NET 2.0 and Keith Brown's article Security: Security Headaches? Take ASP.NET 2.0! in more detail about new features. Also Read Rob Howard's column "'Nothin' But ASP.NET" about the provider model in greater detail.