In the previous section, we learned how to try and secure our application on the client side, and that it is nearly impossible to avoid any malicious attack or manipulation.
Now, we are going to learn how to add security on the server side, the last frontier a hacker has to face and the one where we have more control.
As we saw earlier, the server must not trust the validity of the information that comes from the client, as it can never be guaranteed that the data came from our application. These could come from a pretender, or even another application of ours, which shares the service. Therefore, it may have ignored all the validations implemented in our Silverlight application.
Due to this, the validations of the server must be repeated. To avoid heavy weather, the developer could feel tempted to omit client-side validations, which would not be incorrect nor may suppose a security risk. However, it is essential to recognize the value of these...