I have been having a look at secure and 'correct' ways of handling authentication within my ASP.NET site and have found the Passport Authentication Provider.
http://msdn.microsoft.com/en-us/library/f8e50t0f%28v=vs.71%29.aspx
I've done some research but I'm still skeptical about this being a good idea, does anyone have any other opinion? Have you tried this out before?
Passport is an old technology. You might want to use the newer ASP.NET Identity infrastructure for authentication, authorization etc.