Summary

This chapter has provided an overview of the features that make .NET Framework security unique. In addition, you’ve seen that this security has both strengths and weaknesses. Finally, you’ve learned how the .NET Framework architecture makes using this technology easier, faster, and less error prone than previous Windows security technologies.

Before you go any further, consider again the problems listed in the “Security Problems .NET Can’t Stop” section of the chapter. These are real issues that you need to address before most of the techniques in this book will provide you with a reasonable assurance of secure computing. Not all of these issues have a one-time fix—security is an ongoing process. Although you can’t absolutely stop users from pasting their passwords on their monitor for future use, you can certainly discourage the practice by putting policies in place and providing training.

Chapter 2 begins a detailed discussion of .NET Framework features. You learn about the namespaces and classes that you can use to create a secure application environment using the .NET Framework. Chapter 2 is also the first chapter that contains code that you can use to create secure applications: consider it a starting point. Subsequent chapters provide detailed examples that help you build robust applications with great security.