.NET Security

Front Cover

When you use .NET to create client-and server-side applications, you have to address a new and large set of security issues. .NET Security shows you what you need to know by covering different aspects of the .NET security model through detailed discussions about the key namespaces. The authors demonstrate how to write .NET code to create secure systems within the .NET Framework. They also discuss possible break-ins to the security model in .NETand how .NET prevents such intrusions.

This tutorial explains how to use the .NET security and cryptographic classes, and functions as a reference manual for developers seeking to understand security implementation in the .NET Framework. Additionally, the .NET Framework requires understanding in many new areas like managed code, permissions, and evidenceall of which this dynamic book covers.

Table of Contents The Basics of Cryptography and Security Using the .NET Cryptography Classes XML Encryption and Signatures Code Access Security Role Access Security Remoting and Security ASP.NET Web Application Security Passport Protecting Code

What people are saying - Write a review

We haven't found any reviews in the usual places.

Other editions - View all

About the author (2002)

Pete Stromquist is a consultant at Magenic Technologies (one of the nation's premiere Microsoft Gold Certified Partners), specializing in web-enabled application development using Microsoft tools and technologies. He has spent the last several years architecting and developing the following types of applications: intranet content management, web-enabled training and testing software, B2B and B2C e-commerce, and web-based telemetry and logistics. Pete has complemented his VB skills with several other technologies such as XML, XSL, COM+, IIS, ASP and, of course, .NET. He also enjoys teaching and presenting on .NET technologies. Pete has a mechanical engineering background and received his bachelor's degree from the University of Minnesota.

Tom Fischer's career spans a broad range of technologies with some of the most prestigious consulting firms in the Twin Cities, Minnesota. His certifications include the Sun Certified Java Programmer (SCJP), Microsoft Certified Solution Developer (MCSD), and Microsoft Certified Database Administrator (MCDBA). And as a Microsoft Certified Teacher (MCT), Tom helps teach other developers about the latest Microsoft .NET tools and technologies.

Nathan Smith is a goofy guy who enjoys practicing and preaching web standards. By day, he works as an information architect and interface designer at Geniant.com. By night, he is finishing a master of divinity degree via online classes from Asbury Theological Seminary. In 2005, he started Godbit.com as a resource to help the church better understand how to utilize web standards, and blogs about design semi-regularly at his site SonSpring.com. He has been described by family and friends as mildly amusing, but is really quite dull.

Jason Bock is a senior consultant for Magenic Technologies (http://www.magenic.com). He has worked on a number of business applications using a diverse set of substrates and languages such as C#, .NET, and Java. He is the author of CIL Programming: Under the Hood of .NET and .NET Security, both published by Apress, as well as Visual Basic 6 Win32 API Tutorial. He has also written numerous articles on technical development issues associated with both Visual Basic and Java. Jason holds both a bachelor's and a master's degree in electrical engineering from Marquette University. You can find out more about him at http://www.jasonbock.net.

Bibliographic information