如何保护敏感数据可从缓存访问 [英] How to protect Sensitive data is accessible from cache
本文介绍了如何保护敏感数据可从缓存访问的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
如何从缓存中访问敏感数据。
我在页面上写下代码加载
How Sensitive data is accessible from cache.
I write below code on Page Load
protected void Page_Load(object sender, EventArgs e)
{
Response.ExpiresAbsolute = Convert.ToDateTime("1/1/1980");
Response.AddHeader("cache-control", "no-store, must-revalidate, private");
Response.AddHeader("Pragma", "no-cache");
Response.Cache.SetCacheability(HttpCacheability.NoCache);
Label1.Text = "sddddddddddddddddddddddddd";
}
但是当我在Firfox中点击离线工作并点击历史记录中的Url选项时,它不起作用。
避免使用的最佳做法是什么?可以从asp.net的缓存中访问敏感数据。
当我点击后退按钮时,还会显示页面内容显示哪些更像是敏感数据更危险泄漏问题可以做些什么来处理这种情况。
But it does not work when i click on work offline in Firfox and click on the Url from history option.
What is the best practice to avoid Sensitive data is accessible from cache in asp.net.
Also when i click on back button then also previos page content show which is more dangerous as sensitive data leakage issue what can be done to handle such situation.
推荐答案
Thumb规则是永远不会缓存任何敏感数据。
参考
http ://msdn.microsoft.com/en-us/library/ff650867.aspx#SensitiveData4 [ ^ ]
http://web.securityinnovation.com/ appsec-weekly / blog / bid / 96498 / Do-Not-Cache-Sensitive-Data [ ^ ]
保护包含敏感页面的提示数据。
写 - 安全 - asp-net-code [ ^ ]
Thumb Rule is to never Cache any sensitive data.
Refer
http://msdn.microsoft.com/en-us/library/ff650867.aspx#SensitiveData4[^]
http://web.securityinnovation.com/appsec-weekly/blog/bid/96498/Do-Not-Cache-Sensitive-Data[^]
Tips to secure the Page Containing Sensitive data.
writing-secure-asp-net-code[^]
这篇关于如何保护敏感数据可从缓存访问的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
查看全文
