.NET Development Security Solutions - page 1
- Table of Contents
- Table of Contents
- BackCover
- .NET Development Security Solutions
- Introduction
- Who Should Read This Book?
- Tools Required
- Part I: Introduction to .NET Security
- Chapter 1: Understanding .NET Security
- An Overview of .NET Framework Enhancements
- Security Problems .NET Can t Stop
- .NET Framework Security Architecture Considerations
- Summary
- Chapter 2: .NET Framework Security Overview
- Locating the Security Information You Need
- Understanding the System.Runtime. Remoting.Contexts Namespace
- Understanding the System.Security Namespace
- Understanding the System.Security. Cryptography Namespace
- Understanding the System.Security. Permissions Namespace
- Understanding the System.Security. Policy Namespace
- Understanding the System.Security. Principal Namespace
- Understanding the System.Web. Security Namespace
- Understanding the System. DirectoryServices Namespace
- Summary
- Chapter 3: Avoiding Common Errors and Traps
- Preventing Data Entry Errors
- Stopping Buffer Overruns
- Controlling Access
- Avoiding Canonical Representation Issues
- Summary
- Part II: Desktop and LAN Security
- Chapter 4: .NET Role-Based Security Techniques
- Understanding How .NET Role-Based Security Differs
- Using the Permission View Tool
- Using the .NET Framework Configuration Tool
- Defining Effective Declarative Security
- Defining Effective Imperative Security
- Securing the Registry
- Developing a Secure Desktop Application Installation
- Summary
- Chapter 5: Policies and Code Groups in Detail
- Using the Code Access Security Policy Tool
- Using Code Groups
- Using Policy Objects
- Summary
- Chapter 6: Validation and Verification Issues
- Ensuring Trust in the Managed Environment
- Validating Your Code
- Relying on the AppDomain for Managed Code
- Extending the AppDomain to Unmanaged Code
- Summary
- Chapter 7: .NET Cryptographic Techniques
- Administering the Cryptographic Settings
- Understanding the Supported Cryptographic Methods
- Encrypting and Decrypting Files
- Using the System.Security. Cryptography. X509Certificates Namespace
- Using Hash Functions
- Summary
- Chapter 8: LAN Security Requirements
- Working with Sockets
- Understanding RPC Security
- Working with DCOM
- Developing a Secure Server Application Installation
- Working with COM
- Summary
- Part III: Web-based Security
- Chapter 9: Web Server Security
- Keeping the Server Safe
- Administering the Server
- Avoiding Distributed Denial of Service (DDOS) Attacks
- Overcoming Apparent Communication Errors
- Using Web-based Application Testing Techniques
- Developing a Secure Web-based Application Installation
- Summary
- Chapter 10: Web Data Security
- Defining the Database Connection
- Stemming the Tide of Leaking Information
- Implementing Data Encryption
- Understanding Remoting and Data Encryption
- Summary
