Section
6.1.2
Top Level
Sub Level
General
Data (particularly encrypted data) in transit can be captured and sometimes replayed to attackers benefit. Adding a sealed marker (expiration value, transaction number) can protect against these replay scenarios (e.g., use a hash of data known to the application, but not the user, to protect against replay. Any other crypto function is either too slow, or not secure).
Natural Webagent
This does not apply to Natural or webAgent.
.NET
A class derived from the HashAlgorithm class can be used to do this (do not use the Object.GetHashCode() method).