1

well caching is a perfect way to speed up access to data which are public ( all users of website ) and frequently used. but what about data that are supposed to be accessed by a specific role ( e.g just Administrators ) .

is this sort of caching safe ? is there any security related actions to do when using Data caching ?

Improve this question
2
  • It depends on you business logic, fetching and displaying data from database/cache will be upto you logic. So you may create some area which can only be accessed by authenticated users. Then show you data from cache. Use cache only for those data which is frequent, and used by all the users. That will increase performance. Commented Sep 19, 2012 at 6:11
  • msdn.microsoft.com/en-us/library/hh404101.aspx check to how much data is useful to provide over client side ! Commented Sep 19, 2012 at 6:12

1 Answer 1

Reset to default
2

The security issues for accessing sensitive data from the Cache are exactly the same as those when accessing sensitive data from any other source, e.g. a database.

You just need to implement the appropriate authorization before exposing it to the user.

Improve this answer
Sign up to request clarification or add additional context in comments.

2 Comments

good point , that's what I've done . I just wonder if is it safe to keep non-public data in memory for a while ?
If someone can get at the contents of your server memory, you're hacked, and they'll probably be able to get at your data wherever it is: database, in-memory cache or wherever. So yes, I'd say it's safe to keep it in memory for a while.

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.