This book's target audience is primarily Web developers and administrators developing, deploying, supporting, and using Windows 2000-based Web applications. Web developers will learn how to build security into their applications up front rather than after the fact; adding security features at the end of the development process is an often-made mistake that almost always jeopardizes security. They'll also learn how to approach and make the trade-offs between functionality, speed, and security. Web administrators will learn how to deploy Web applications securely, how to determine whether a computer is coming under attack, and how to respond to attacks.
Any reader of this book will gain a greater understanding of the security capabilities in Windows 2000, COM+, Internet Information Services (IIS), and Microsoft SQL Server and will learn a great deal about bedrock security principles. This knowledge is invaluable beyond building and deploying Web applications; all computer-based solutions require security of some sort.