Beginning ASP.NET Security

( 1 )

Overview

Beginning ASP.NET Security is for novice to intermediate ASP.NET programmers and provides a step-by-step solution to securing each area of ASP.NET development. Rather than approaching security from a theoretical direction, MVP Barry Dorrans shows you examples of how everyday code can be attacked, and describes the steps necessary for defense. Inside, you'll learn how you can defend your ASP.NET applications using the .NET framework, industry patterns and best practices, code libraries and resources provided by ...

See more details below
Other sellers (Paperback)
  • All (10) from $13.29   
  • New (6) from $24.87   
  • Used (4) from $13.29   

Overview

Beginning ASP.NET Security is for novice to intermediate ASP.NET programmers and provides a step-by-step solution to securing each area of ASP.NET development. Rather than approaching security from a theoretical direction, MVP Barry Dorrans shows you examples of how everyday code can be attacked, and describes the steps necessary for defense. Inside, you'll learn how you can defend your ASP.NET applications using the .NET framework, industry patterns and best practices, code libraries and resources provided by Microsoft and others. Beginning ASP.NET Security: Explores issues with user input including validation, cross-site scripting (XSS) and cross-site request forgery (CSRF) Teaches how to securely access your database and defend against SQL injection attacks Shares techniques for keeping secrets, including encryption, hashing and preventing information leaks Examines methods for authenticating and authorizing users, including ASP.NET membership providers and preventing cookie theft Shares tips for securing your web server, including how ASP.NET uses trust levels and locking down IIS Unveils ways to securely use WCF web services Presents security with the Microsoft ASP.NET Ajax framework and Silverlight Includes an overview of security with the Microsoft MVC framework.

Read More Show Less

Product Details

  • ISBN-13: 9780470743652
  • Publisher: Wiley
  • Publication date: 3/22/2010
  • Edition number: 1
  • Pages: 436
  • Sales rank: 1,296,401
  • Product dimensions: 7.40 (w) x 9.20 (h) x 1.00 (d)

Meet the Author

Barry Dorrans is a consultant, speaker and Microsoft MVP in the "Visual Tools – Security" category. His approach to development and writing blends humor with the paranoia suitable for considering security.
Read More Show Less

Table of Contents

ACKNOWLEDGMENTS xi

INTRODUCTION xxi

CHAPTER 1: WHY WEB SECURITY MATTERS 1

CHAPTER 2: HOW THE WEB WORKS 15

CHAPTER 3: SAFELY ACCEPTING USER INPUT 39

CHAPTER 4: USING QUERY STRINGS, FORM FIELDS, EVENTS, AND BROWSER INFORMATION 65

CHAPTER 5: CONTROLLING INFORMATION 87

CHAPTER 6: KEEPING SECRETS SECRET — HASHING AND ENCRYPTION 117

CHAPTER 7: ADDING USERNAMES AND PASSWORDS 151

CHAPTER 8: SECURELY ACCESSING DATABASES 185

CHAPTER 9: USING THE FILE SYSTEM 207

CHAPTER 10: SECURING XML 225

CHAPTER 11: SHARING DATA WITH WINDOWS COMMUNICATION FOUNDATION 255

CHAPTER 12: SECURING RICH INTERNET APPLICATIONS 289

CHAPTER 13: UNDERSTANDING CODE ACCESS SECURITY 315

CHAPTER 14: SECURING INTERNET INFORMATION SERVER (IIS) 329

CHAPTER 15: THIRD-PARTY AUTHENTICATION 359

CHAPTER 16: SECURE DEVELOPMENT WITH THE ASP.NET MVC FRAMEWORK 385

MVC Framework 398

INDEX 399

Read More Show Less

Customer Reviews

Average Rating 4
( 1 )
Rating Distribution

5 Star

(0)

4 Star

(1)

3 Star

(0)

2 Star

(0)

1 Star

(0)

Your Rating:

Your Name: Create a Pen Name or

Barnes & Noble.com Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & Noble.com that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & Noble.com does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at BN.com or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation

Reminder:

  • - By submitting a review, you grant to Barnes & Noble.com and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Noble.com Terms of Use.
  • - Barnes & Noble.com reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & Noble.com also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on BN.com. It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

 
Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously
Sort by: Showing 1 Customer Reviews
  • Posted May 6, 2010

    Excellent beginners guide to ASP.NET security

    I was very pleased with the topics covered in this book. Barry Dorrans delivered a very non-interesting subject in a manner that kept your attention throughout. I wish more entry-level developers would read this before getting started. They would certainly have a better understanding of ASP.NET security and how to implement better coding practices up front.

    Was this review helpful? Yes  No   Report this review
Sort by: Showing 1 Customer Reviews

If you find inappropriate content, please report it to Barnes & Noble
Why is this product inappropriate?
Comments (optional)