.NET Framework Security

.NET Framework Security

5.0 1
by Brian A. LaMacchia, Matthew Lyons, Sebastian Lange, Rudi Martin
     
 

ISBN-10: 067232184X

ISBN-13: 9780672321849

Pub. Date: 04/24/2002

Publisher: Pearson Education

In 1997, Microsoft embarked on a "bet the company" strategy that was to reinvent the way the company did business. Even before its release, .NET made major strides in reinventing the way that software developers viewed the software they wrote.

Now that it is released, .NET and the .NET Framework will change the software development process for

…  See more details below

Overview

In 1997, Microsoft embarked on a "bet the company" strategy that was to reinvent the way the company did business. Even before its release, .NET made major strides in reinventing the way that software developers viewed the software they wrote.

Now that it is released, .NET and the .NET Framework will change the software development process for good.

.NET Framework Security provides the ultimate high-end comprehensive reference to all of the new security features available in .NET. Through extensive code samples and step-by-step walkthroughs of configuration techniques, the reader is taken deep into the world of secure applications. Demonstrations of creating custom procedures and a full explanation of each aspect separate this book from many other "lecture books." Many of the concepts expressed in this book are not only viable in .NET, but on the Internet in general. These factors combined make this the one reference that every developer and system administrator should have.

.NET Framework Security provides

  • An extensive introduction to explanation of Code Access Security, the powerful new security system shipping in the .NET Framework
  • Information on how to write and test safe applications using the .NET Framework
  • Extensive coverage on how to effectively administer .NET Framework security
  • In-depth introduction to the cryptography library shipping in the .NET Framework, including an introduction to XML digital signatures
  • An overview of all of the new security features available in .NET
  • Code samples that can be used to implement security on your own Web site or application
  • Step-by-stemodifying the various configuration files associated with .NET, and an explanation of the elements involved
  • Instructions for all of the aspects of security in the CLR and what it means
  • How to use ASP.NET to create a secure application
  • Explanations for using the CryptoAPI libraries to create your own custom functionality
  • Guidelines on how to create secure network applications as well as applications that exist on the Internet
  • Detailed examples of how to establish security parameters in IIS that relate to ASP.NET
  • Instructions for administering .NET applications hosted in IE



Read More

Product Details

ISBN-13:
9780672321849
Publisher:
Pearson Education
Publication date:
04/24/2002
Pages:
816
Product dimensions:
7.30(w) x 9.14(h) x 1.79(d)

Table of Contents

Introduction1
Pt. IIntroduction to the .NET Developer Platform Security7
1Common Security Problems on the Internet9
2Introduction to the Microsoft .NET Developer Platform23
3.NET Developer Platform Security Solutions33
Pt. IICode Access Security Fundamentals43
4User- and Code-Identity-Based Security: Two Complementary Security Paradigms45
5Evidence: Knowing Where Code Comes From57
6Permissions: The Workhorse of Code Access Security69
7Walking the Stack81
8Membership Conditions, Code Groups, and Policy Levels: The Brick and Mortar of Security Policy99
9Understanding the Concepts of Strong Naming Assemblies121
10Hosting Managed Code135
11Verification and Validation: The Backbone of .NET Framework Security149
12Security Through the Lifetime of a Managed Process: Fitting It All Together165
Pt. IIIASP.NET and Web Services Security Fundamentals179
13Introduction to ASP.NET Security181
14Authentication: Know Who Is Accessing Your Site197
15Authorization: Control Who Is Accessing Your Site221
16Data Transport Integrity: Keeping Data Uncorrupted229
Pt. IV.NET Framework Security Administration241
17Introduction: .NET Framework Security and Operating System Security243
18Administering Security Policy Using the .NET Framework Configuration Tool265
19Administering .NET Framework Security Policy Using Scripts and Security APIs331
20Administering an IIS Machine Using ASP.NET373
21Administering Clients for .NET Framework Mobile Code405
22Administering Isolated Storage and Cryptography Settings in the .NET Framework413
Pt. V.NET Framework Security for Developers437
23Creating Secure Code: What All .NET Framework Developers Need to Know439
24Architecting a Secure Assembly449
25Implementing a Secure Assembly463
26Testing a Secured Assembly529
27Writing a Secure Web Site Using ASP.NET553
28Writing a Secure Web Application in the .NET Development Platform571
29Writing a Semi-Trusted Application591
30Using Cryptography with the .NET Framework: The Basics609
31Using Cryptography with the .NET Framework: Advanced Topics669
32Using Cryptography with the .NET Framework: Creating and Verifying XML Digital Signatures699
Index767

Read More

Customer Reviews

Average Review:

Write a Review

and post it to your social network

     

Most Helpful Customer Reviews

See all customer reviews >

.NET Framework Security 5 out of 5 based on 0 ratings. 1 reviews.
Guest More than 1 year ago
This is the best book to buy on .Net. Like all things digital, .Net has recently spawned a few other books of largely shoddy quality. This book, however, written by those who ought to know (Sebastian Lange & company) is the standout. It's clearly written, well- organized, and full of the right information. It's the best place to start, and until they update it, it'll be the place to stay.