Hi All,
Application Structure info:
Presentation Layer - HTML & Javascripts only (It contains all the controls and communicate to processing layer by using jquery Ajax json service.)
Processing Layer - Asp.net (It contains common web service/method to process the presentation layer all request (authendication, check users in database and data manipulations from db)). Actually it's an intermediate for database and client UI.
My BIG question is,
What are the methods to secure this structure? and how to solve the below security issues in this structure?
- Login page Authentication for all the HTML pages
- Need to check referrer for all the HTML pages
- JSON Hijacking
- Cross Site Request Forgery or Cross Site Scripting (XSS)
- JavaScript + CSS files security
- Remote code execution
- SQL injection
- Format string vulnerabilities
- URLs Visibility
Please help me. Thanks in advance.
Thanks & Regards,
Sathiskumar.P