Securing Applications is always one of the toughest
challenges programmers face. This is because of the changes the application
undergoes. The security policies do change and thus the security code needs to
be rewritten. For such scenarios Microsoft has come up with the provider model.
The inbuilt classes such as MembershipProvider, RoleProvider, and
ProfileProvider help us to create our own custom classes. In case of any
changes in the security policy we just need to write a new custom class that
deals with the changes. Also, since its assembly names are mentioned in the
configuration, we can maintain different versions of the custom classes.