App Architecture with Security in mind - Video, Part I
Some time ago I was reviewing high level arch spec for really big project. in one place it stated "Input validation checks will be done on the client side for perf reason. Since client part will do the security checks the server part will not performs input validation since it is redundant and may hurt the performance"
Watch the video to see what happens when the input is validated on the client only. Double click it to see it in full screen mode.
This time it is WinForms client talking to Web Service. Next time it is Remoting client talks to remoting listener. The result is the same.Wait and see it in the next post