1

I'm storing a lot of sensitive information in it. Is it something that can be seen by end-user?

Improve this question

2 Answers 2

Reset to default
2

No it cannot. It's fine to store sensitive information there. In fact - it's where .net membership creates the User object for authentication.

http://msdn.microsoft.com/en-us/library/ff650037.aspx

Improve this answer
Sign up to request clarification or add additional context in comments.

Comments

1

Actually no. The session informations are in your server. Hidden html objects (including view state), cookies or your querystring can be seen by end - user

Improve this answer

Comments

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.