Designing Secure Mobile Web Form Pages
Building secure Web sites is always a top priority. There are additional security considerations when building a Web application that includes mobile Web pages and might communicate sensitive information over public data networks.
Authentication, authorization, and encryption are the three items you must consider for security in your Web applications. Authentication establishes the identity of a user. Authorization helps to control what the user can or cannot access. Encryption is the mechanism that helps to protect data as it passes between client and server.
ASP.NET mobile controls use the security infrastructure that is in place with Internet Information Services (IIS) and the Microsoft .NET Framework. For more in-depth discussion about encryption and authorization, see the .NET Framework documentation and IIS documentation. The ASP.NET 2.0 QuickStart Tutorial has an introduction to security that is a good place to start.
For more security recommendations, seeand .
In This Section
Describes the complexities of authenticating mobile devices.
Describes the security issues associated with using WAP gateways.
Describes the ports that affect ASP.NET mobile Web pages.