For more information, see the following resources and articles:
You can download Web Services Enhancements (WSE) 1.0 SP1 for Microsoft .NET at http://microsoft.com/downloads/details.aspx?FamilyId=06255A94-2635-4D29-A90C-28B282993A41&displaylang=en.
Microsoft Knowledge Base article 329290, "How To: Use the ASP.NET Utility to Encrypt Credentials and Session State Connection Strings."
Microsoft Knowledge Base article 311209, "How To: Configure ASP.NET for Persistent SQL Server Session State Management."
Microsoft Knowledge Base article 312906, "How To: Create Keys by Using Visual C# .NET for Use in Forms."
"How To: Implement Kerberos Delegation for Windows 2000" in the "How To" section of "Microsoft patterns & practices Volume I, Building Secure ASP.NET Applications: Authentication, Authorization, and Secure Communication" at http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/html/SecNetHT05.asp.
For more information on security considerations from the Open Hack competition, see MSDN article "Building and Configuring More Secure Web Sites" at http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/html/openhack.asp .