IT Pro Today is part of the Informa Tech Division of Informa PLC

INFORMA PLC|ABOUT US|INVESTOR RELATIONS|TALENT

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Documents Online Events Advertise About

Newsletter Sign-Up

Cloud

Recent in Cloud

SEE ALL Cloud

finger pressing an ERP button on a keyboard

Cloud Computing

3 Reasons Why Your Business Should Switch to a Cloud-Based ERP System 3 Reasons Why Your Business Should Switch to a Cloud-Based ERP System

byIndustry Perspectives

Jul 5, 2024

3 Min Read

the word "cloud" written on blocks

Public Cloud

Public Cloud Economics Aren't Adding Up for Some Telcos Public Cloud Economics Aren't Adding Up for Some Telcos

byIain Morris, Light Reading

Jul 5, 2024

8 Min Read

Recent in OS

See All OS

padlocks on top of coce

Networking & Security

How AI Can Improve Network Security How AI Can Improve Network Security

byNetwork Computing

Jul 5, 2024

2 Min Read

illustration of a soundwave

PowerShell

How To Make PowerShell Speak (Text-to-Speech .NET Tutorial)How To Make PowerShell Speak (Text-to-Speech .NET Tutorial)

byBrien Posey

Jul 5, 2024

8 Min View

IT Mgmt

Recent in IT Mgmt

See All IT Mgmt

finger pressing an ERP button on a keyboard

Cloud Computing

3 Reasons Why Your Business Should Switch to a Cloud-Based ERP System 3 Reasons Why Your Business Should Switch to a Cloud-Based ERP System

byIndustry Perspectives

Jul 5, 2024

3 Min Read

person pressing an "IT" button

IT Management

Well-Intentioned Things IT Leaders Do That Hurt Team Productivity Well-Intentioned Things IT Leaders Do That Hurt Team Productivity

byInformationWeek

Jul 1, 2024

2 Min Read

Career

Recent in Career

See All Career Mgmt

Meta Threads logo on smartphone

Career Management

Meta's Threads Is Struggling to Win Over Content Creators Meta's Threads Is Struggling to Win Over Content Creators

byThe Washington Post

Jul 6, 2024

5 Min Read

robot and human fingers touching

Career Management

Employees Beginning to See Benefits of AI Autonomy in the Workplace Employees Beginning to See Benefits of AI Autonomy in the Workplace

byNathan Eddy

Jul 3, 2024

4 Min Read

Storage

Recent in Storage

See All Data Storage

data floating

IT Operations

How IT Operations Can Play a Critical Role in Data Management How IT Operations Can Play a Critical Role in Data Management

byChristopher Tozzi

Jun 21, 2024

4 Min Read

virtual data stack

Data Storage

How to Build a Data Stack That Actually Puts You in Charge of Your Data How to Build a Data Stack That Actually Puts You in Charge of Your Data

byIndustry Perspectives

Jun 14, 2024

8 Min Read

Security

Recent in Security

See All IT Security

elementary students in classroom raising hands

Vulnerabilities & Threats

What Cybersecurity Defense Looks Like for School Districts What Cybersecurity Defense Looks Like for School Districts

byDark Reading

Jul 2, 2024

4 Min Read

artwork shows seven eyeballs emerging from a mess of wires

Data Privacy

Why Windows Recall Feature Creates a Data Privacy Nightmare Why Windows Recall Feature Creates a Data Privacy Nightmare

byBrien Posey

Jul 2, 2024

3 Min Read

Dev

Recent in Dev

See All Software Dev

fintech applications

Software Development Techniques

Building Finance Apps: Best Practices and Unique Challenges Building Finance Apps: Best Practices and Unique Challenges

byChristopher Tozzi

Jul 4, 2024

5 Min Read

2 programmers looking at 2 screens of code

No Code/Low Code

Future-Proofing Development with Low-Code/No-Code Solutions in the Age of AI Future-Proofing Development with Low-Code/No-Code Solutions in the Age of AI

byIndustry Perspectives

Jul 3, 2024

5 Min Read

Recent in DX

See All Digital Transformation

the logo of Apple is displayed on a mobile phone screen with artificial intelligence written in the background

AI & Machine Learning

Apple Offers Free AI Training for Developer Academy Students Apple Offers Free AI Training for Developer Academy Students

byBen Wodecki, AI Business

Jul 1, 2024

1 Min Read

ChatGPT login screen seen on smartphone and laptop displays.

AI & Machine Learning

OpenAI Releases CriticGPT to Catch Chatbot Hallucinations – Is It Enough?OpenAI Releases CriticGPT to Catch Chatbot Hallucinations – Is It Enough?

byDayneé Alejandra Rosales

Jul 1, 2024

2 Min Read

Infrastructure

ADO.NET Security Recommendations

ADO.NET Security Recommendations concentrates on the following areas. Authentication Modes Connection String OptionsAuthentication ModesUse Windows Authenticati

ITPro Today

April 14, 2004

3 Min Read

ADO.NET Security Recommendations concentrates on the following areas.
Authentication Modes
Connection String Options
Authentication Modes
Use Windows Authentication over SQL Authentication

1. Security is easier to manage

2. User names and Passwords are not needed in Connection Strings

3. Logon Security Improves through password expiration periods, minimum lengths and account lockout after multiple invalid logon request.

4. Passwords are not sent as clear text over network

Avoid Impersonation in the Middle-Tier for better connection Pooling

Consider 2 Accounts for Impersonation - One account for Reads and Other for Writes

Windows Authentication takes longer to Open pooled connection than SQL authentication

Connection String Options

Connection string can be stored in

1. XML Configuration files

2. UDL file for OLEDB Provider

3. COM+ Catalog for serviced components

4. Windows registry

5. Custom files

Use Windows Authentication It does not require password to be stored.

Encrypt connection string in XML

Can restrict access to connection string stored in registry by using ACLs and encrypting Data

Set Persist Security Info to false to avoid security-sensitive details, such as the password from being returned by means of ConnectionString property of the SQLConnection or OleDbconnection.