You are here: silicon.com > Resources > White Papers > Software and Web Development > Software Development Tools > Software Engineering

MSDN Webcast: Dave's Top 10 Ways to Secure Your Web Application - Level 300

Tags:
software engineering

Overview This webcast presents practical best practices for writing secure ASP.NET code. The presenter's top 10 field-tested practices are: Hash the passwords in the Presentation Tier, use Role Based Authentication, use Declarative Security with PrincipalPermissionAttribute and SecurityAction.Demand, use Imperative Security with IsInRole, roll the custom Principal, wrap possibly unsecure code with Try Finally (includes cleanup tips), defeat brute-force attacks with maximum retry counts, encrypt sensitive data in .config files and other places with System.Security.Cryptography, use Code Access Security to ensure least-privilege in the assemblies, and use the Framework DON'T REINVENT THE WHEEL!.

Further White Paper Details
Publisher	Microsoft
Live Date	1st June 2004 00:00 BST
Format	Webcast
Topics	Software Engineering, Security Management, Application Development

Did you find this white paper useful? 0 out of 1 users found this white paper useful

Microsoft faces off with Linux fans

Microsoft's presence at the show and the presentation was eye-opening to some. And though Taylor acknowledged that his customers often use a mix of operating systems, Microsoft isn't likely to make life easier for Linux users in some areas - for...

Channel:
Desktops

Hackers turn to dictionary to invade Cisco WLANs

Earlier this week, the networking company acknowledged a previously discovered vulnerability in its Lightweight Extensible Authentication Protocol (LEAP) that makes it easier for hackers to launch dictionary attacks to guess common passwords used...

Channel:
LANs

Worried customers force data safety rethink

P is for Passwords T is for Two-factor authentication Its head of technology and security risk services Richard Brown said this is the result of growing consumer concern and awareness, because identity theft, loss of personal data, phishing attacks...

Cisco warns over pair of network flaws

Cisco NAC Appliance, which checks external devices attempting to log on to a company network are compliant with security policy, contains two flaws that an attacker could use to gain control of the devices, or compromise sensitive information...

Channel:
Security Strategy
Tags:
flaws,
cisco

Trojan targets companies' top brass

P is for Passwords T is for Two-factor authentication We have to run Office and we have to allow Word, RTF, PowerPoint and Excel files through. Heuristic or behavioural-based monitoring is proving to be more effective at blocking these attacks...

FBI cyber crime chief on botnets, web terror and the social network threat

People are not doing the basics, using antivirus software, downloading patches, using firewalls, using passwords that are not easy to guess, being careful where they surf and what they click on and opening email with attachments coming from...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.