ASP.NET web applications that leverage Forms Authentication, ASP.NET Membership Providers, ASP.NET Role Providers, and/or ViewState encryption are vulnerable to data exposure and potentially tampering. This vulnerability can lead to the .NET MachineKey being discovered by attackers. This post briefl...

Ercu's post introducing PGP Command Line Utility and It's usage for cryptographic pgp operations in C#.

we need to save data (i.e. a dataset) to the local machine but not necessarily expose the data within to the end user outside of the application.

The web is nothing if not a maze of user accounts and logins. Almost everywhere you go on the web requires yet another new set of credentials. Unified login seems to elude us at the moment, so the status quo is ...

Plug this simple HttpModule to your existing web application and all your query strings will automatically be encrypted without you have to change your code.

This my second post of almost same topic asp.net lacking. This time it is Cookie. Still Asp.net has the lacking of creating encrypted cookie. Here is another handy class which generates encrypted cookie.

NET version 3.0 has been released, but Asp.net still does not have any built-in support for passing querystring in encrypted text. This class will give you the support to pass querystring in encrypted rather than plain.

In this article shows you how to exchange data securely with a Web Service without HTTPS/SSL. It also provides real life example on the implementation and limitation on the important encryption types as well as Digital Signature that are available in .NET Framework.

Phil Haack outlines a nice technique for implementing a CAPTCHA control without relying on ViewState or Session state

A very simple method that encrypt strings like passwords. Add a little more security to you're applications.