Hello All;
I read an article that stated the use of binary serialization is very dangerous and can not be fully secured. He described a scenario where an asp.net application was connected to an oracle database and several objects from the asp.net application was converted into bytes to store in the database and also used for transmission. Some of the reason given why it was dangerous includes
- DDOS attack
- interception of the data and manipulation of the data
Hence, my question though, is the danger only associated with the asp.net framework or can it be dangerous as well for the Database, likewise are there situations where objects within oracle are converted into bytes and hence could also have such potential risk.