Visual Studio Magazine

Protect ASP.NET Applications Against CSRF Attacks

Protect your ASP.NET applications from Cross-Site Request Forgery attacks by leveraging ARMOR, a C# implementation of the Encrypted Token Pattern. Here's how. The Encrypted Token Pattern is a defense ...
heise online

Page 2: The Backend-for-Frontend Pattern: The Architectural Solution

Given the serious security issues with token storage in the browser, a fundamental question arises: Why even try to store access tokens securely in the frontend when you can instead leave them where ...