Beginning ASP.NET Security
(Sprache: Englisch)
A practical guide to securing ASP.NET sitesBeginning ASP.NET Security is for novice to intermediate ASP.NET programmers and provides a step-by-step solution to securing each area of ASP.NET development. Rather than approaching security from a theoretical...
Leider schon ausverkauft
versandkostenfrei
Buch
39.25 €
Produktdetails
Produktinformationen zu „Beginning ASP.NET Security “
A practical guide to securing ASP.NET sites
Beginning ASP.NET Security is for novice to intermediate ASP.NET programmers and provides a step-by-step solution to securing each area of ASP.NET development. Rather than approaching security from a theoretical direction, MVP Barry Dorrans shows you examples of how everyday code can be attacked, and describes the steps necessary for defense. Inside, you'll learn how you can defend your ASP.NET applications using the .NET framework, industry patterns and best practices, code libraries and resources provided by Microsoft and others.
Beginning ASP.NET Security:
* Explores issues with user input including validation, cross-site scripting (XSS) and cross-site request forgery (CSRF)
* Teaches how to securely access your database and defend against SQL injection attacks
* Shares techniques for keeping secrets, including encryption, hashing and preventing information leaks
* Examines methods for authenticating and authorizing users, including ASP.NET membership providers and preventing cookie theft
* Shares tips for securing your web server, including how ASP.NET uses trust levels and locking down IIS
* Unveils ways to securely use WCF web services
* Presents security with the Microsoft ASP.NET Ajax framework and Silverlight
* Includes an overview of security with the Microsoft MVC framework
Wrox Beginning guides are crafted to make learning programming languages and technologies easier than you think, providing a structured, tutorial format that will guide you through all the techniques involved.
wrox.com
Programmer Forums
Join our Programmer to Programmer forums to ask and answer programming questions about this book, join discussions on the hottest topics in the industry, and connect with fellow programmers from around the world.
Code Downloads
Take advantage of free code samples from this book, as well as code samples from hundreds of other books, all ready to use.
Read More
Find articles, ebooks, sample chapters and tables of contents for hundreds of books, and more reference resources on programming topics that matter to you.
Klappentext zu „Beginning ASP.NET Security “
A practical guide to securing ASP.NET sitesBeginning ASP.NET Security is for novice to intermediate ASP.NET programmers and provides a step-by-step solution to securing each area of ASP.NET development. Rather than approaching security from a theoretical direction, MVP Barry Dorrans shows you examples of how everyday code can be attacked, and describes the steps necessary for defense. Inside, you'll learn how you can defend your ASP.NET applications using the .NET framework, industry patterns and best practices, code libraries and resources provided by Microsoft and others.
Beginning ASP.NET Security:
Explores issues with user input including validation, cross-site scripting (XSS) and cross-site request forgery (CSRF)
Teaches how to securely access your database and defend against SQL injection attacks
Shares techniques for keeping secrets, including encryption, hashing and preventing information leaks
Examines methods for authenticating and authorizing users, including ASP.NET membership providers and preventing cookie theft
Shares tips for securing your web server, including how ASP.NET uses trust levels and locking down IIS
Unveils ways to securely use WCF web services
Presents security with the Microsoft ASP.NET Ajax framework and Silverlight
Includes an overview of security with the Microsoft MVC framework
Wrox Beginning guides are crafted to make learning programming languages and technologies easier than you think, providing a structured, tutorial format that will guide you through all the techniques involved.
wrox.com
Programmer Forums
Join our Programmer to Programmer forums to ask and answer programming questions about this book, join discussions on the hottest topics in the industry, and connect with fellow programmers from around the world.
Code Downloads
Take advantage of free code samples from this book, as well as code samples from hundreds of other books, all ready to use.
Read More
Find articles, ebooks, sample
... mehr
chapters and tablesof contents for hundreds of books, and more reference resources on programming topics that matter to you.
... weniger
Beginning ASP.NET 3.5 Security is geared for novice to intermediate ASP.NET programmers who wish to protect and defend their web sites against attack and exploitation. Beginning with a discussion of why we need security and the things that may occur when it is ignored and an overview of how ASP.NET works, readers are taken through the common steps in developing a web site, the security problems each area exposes and how these can be exploited. Visual Studio Security MVP Barry Dorrans teaches readers how they can defend their applications using the standard .NET framework, industry patterns and best practices, code libraries and resources provided by Microsoft and others.
The book is divided into sections including:
- Accepting user input including validation, canonicalization and cross site scripting (XSS)
- Using databases securely including SQL injection attacks and how to securely access your database.
- Keeping secrets including encryption, hashing and how not to leak information
- Authenticating and authorizing including the ASP.NET membership providers, securing sessions and cookie theft.
- Securing the web server including how ASP.NET uses trust levels and how IIS can be security
- Securing web services including WCF and ASMX web services
- Securing the Microsoft ASP.NET Ajax framework
- Thinking securely including an introduction to threat modeling.
Beginning ASP.NET 3.5 Security provides a step by step solution to securing each area of ASP.NET development by providing a practical approach and providing references to examples of web sites that have suffered the exploits and additional material which will inspire readers to investigate and learn more. Readers can check their learning through exercise questions.
The book is divided into sections including:
- Accepting user input including validation, canonicalization and cross site scripting (XSS)
- Using databases securely including SQL injection attacks and how to securely access your database.
- Keeping secrets including encryption, hashing and how not to leak information
- Authenticating and authorizing including the ASP.NET membership providers, securing sessions and cookie theft.
- Securing the web server including how ASP.NET uses trust levels and how IIS can be security
- Securing web services including WCF and ASMX web services
- Securing the Microsoft ASP.NET Ajax framework
- Thinking securely including an introduction to threat modeling.
Beginning ASP.NET 3.5 Security provides a step by step solution to securing each area of ASP.NET development by providing a practical approach and providing references to examples of web sites that have suffered the exploits and additional material which will inspire readers to investigate and learn more. Readers can check their learning through exercise questions.
Inhaltsverzeichnis zu „Beginning ASP.NET Security “
ACKNOWLEDGMENTS.INTRODUCTION.
CHAPTER 1: WHY WEB SECURITY MATTERS.
PART I: THE ASP.NET SECURITY BASICS.
CHAPTER 2: HOW THE WEB WORKS.
CHAPTER 3: SAFELY ACCEPTING USER INPUT.
CHAPTER 4: USING QUERY STRINGS, FORM FIELDS, EVENTS, AND BROWSER INFORMATION.
CHAPTER 5: CONTROLLING INFORMATION.
CHAPTER 6: KEEPING SECRETS SECRET -- HASHING AND ENCRYPTION.
PART II: SECURING COMMON ASP.NET TASKS.
CHAPTER 7: ADDING USERNAMES AND PASSWORDS.
CHAPTER 8: SECURELY ACCESSING DATABASES.
CHAPTER 9: USING THE FILE SYSTEM.
CHAPTER 10: SECURING XML.
PART III: ADVANCED ASP.NET SCENARIOS.
CHAPTER 11: SHARING DATA WITH WINDOWS COMMUNICATION FOUNDATION.
CHAPTER 12: SECURING RICH INTERNET APPLICATIONS.
CHAPTER 13: UNDERSTANDING CODE ACCESS SECURITY.
CHAPTER 14: SECURING INTERNET INFORMATION SERVER (IIS).
CHAPTER 15: THIRD-PARTY AUTHENTICATION.
CHAPTER 16: SECURE DEVELOPMENT WITH THE ASP.NET MVC FRAMEWORK.
INDEX.
Autoren-Porträt von Barry Dorrans
Barry Dorrans is a consultant, speaker and Microsoft MVP in the "Visual Tools - Security" category. His approach to development and writing blends humor with the paranoia suitable for considering security.
Bibliographische Angaben
- Autor: Barry Dorrans
- 2010, 1. Auflage., 416 Seiten, Maße: 18,9 x 23,5 cm, Kartoniert (TB), Englisch
- Verlag: Wiley & Sons
- ISBN-10: 0470743654
- ISBN-13: 9780470743652
Sprache:
Englisch
Kommentar zu "Beginning ASP.NET Security"
0 Gebrauchte Artikel zu „Beginning ASP.NET Security“
Zustand | Preis | Porto | Zahlung | Verkäufer | Rating |
---|
Schreiben Sie einen Kommentar zu "Beginning ASP.NET Security".
Kommentar verfassen