What you need to do is set the content being rendered by the action to not be cacheable on the client. When the click Back, they will be sent to your action again (rather than the cached content) and if you've implemented the
Authorise Attribute[
^] on your actions, you will be redirected to the login page
You could create an action filter and have the cache directives set by that filter
http://stackoverflow.com/questions/1160105/asp-net-mvc-disable-browser-cache/1705113#1705113[
^]
Then, you simply tag your controllers or actions with the filter attribute to apply the directives.