well caching is a perfect way to speed up access to data which are public ( all users of website ) and frequently used. but what about data that are supposed to be accessed by a specific role ( e.g just Administrators ) .
好的缓存是加速访问公共数据(所有网站用户)和经常使用的数据的完美方式。但是对于那些应该由特定角色访问的数据呢?g只是管理员。
is this sort of caching safe ? is there any security related actions to do when using Data caching ?
这种缓存安全吗?在使用数据缓存时,是否需要执行任何与安全性相关的操作?
1 个解决方案
#1
1
The security issues for accessing sensitive data from the Cache are exactly the same as those when accessing sensitive data from any other source, e.g. a database.
从缓存访问敏感数据的安全性问题与从其他数据源访问敏感数据时的安全性问题是完全相同的,例如数据库。
You just need to implement the appropriate authorization before exposing it to the user.
您只需要在向用户公开授权之前实现适当的授权。
#1
1
The security issues for accessing sensitive data from the Cache are exactly the same as those when accessing sensitive data from any other source, e.g. a database.
从缓存访问敏感数据的安全性问题与从其他数据源访问敏感数据时的安全性问题是完全相同的,例如数据库。
You just need to implement the appropriate authorization before exposing it to the user.
您只需要在向用户公开授权之前实现适当的授权。