Following the ASP.NET 2.0 posts I’ve been doing, here are some more tutorials and links this time about Security, these links where found in Brian Goldfarb’s Blog:
Our security team has recently put together a very unique approach to security — get the info you need to fight XSS, SQL Injection and more at:
Security Engineering
Web Application Security Engineering:
http://channel9.msdn.com/wiki/default.aspx/SecurityWiki.SecurityTrainingModules
. . .
Also check out these links to other solid Security guidance:
ASP.NET 2.0 Security Guidance Library
Key Recommendations/Guidelines:
- ASP.NET 2.0 Security Guidelines: http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGGuidelines0001.asp
- ASP.NET 2.0 Security Checklist: http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGCK0001.asp
- ASP.NET 2.0 Security Practices at a Glance: http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGPractices0001.asp
How Things Work:
- Forms Authentication Explained: http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGExplained0002.asp
- Windows Authentication Explained: http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGExplained0001.asp
Security Engineering
Web Application Security Engineering:
- Includes threat modeling web applications, security design review, security code review, and security deployment review.
- Home: http://msdn.microsoft.com/library/en-us/dnpag2/html/WebAppSecurityEngIndex.asp
ASP.NET 2.0 Security Code Review:
- How To: http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGHT000027.asp
- ASP.NET 2.0 Question List: http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGQuestionList0001.asp
Cheat Sheets
- Cheat Sheet: Web Application Security Threats, Attacks, Vulnerablities, and Countermeasures: http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGQuestionList0001.asp
Index of ASP.NET 2.0 Security Guidance
- ASP.NET 2.0 Security Guidance View: http://msdn.microsoft.com/library/en-us/dnpag2/html/ASPNET2SecurityGuidanceIndex.asp
Leave a comment