APPLICATION SECURITY BOOK EXCERPTS
ASP.NET 2.0 MVP Hacks and Tips -- Chapter 14, Security Hacks
David Yack, Joe Mayo, Scott Hanselman, Fredrik Normén, Dan Wahlin, J. Ambrose Little, and Jonathan Goodyear
05.19.2006
Rating: --- (out of 5)
As a registered member of SearchSoftwareQuality.com, you're entitled to a complimentary copy of Chapter 14 of ASP.NET 2.0 MVP Hacks and Tips written by David Yack, Joe Mayo, Scott Hanselman, Fredrik Normén, Dan Wahlin, J. Ambrose Little, and Jonathan Goodyear and published by John Wiley & Sons Inc.
"Security Hacks" discusses how everyone must include security as an integral part of Web application requirements in order to achieve success. It also provides techniques to harden your applications against exploits, including SQL injection attacks and canonicalization attacks.
Book description:
As Microsoft MVPs, this team of authors has witnessed first-hand the innumerable problems and challenges that even the most experienced developers regularly encounter. This project survival guide offers little-known solutions, undocumented features, tips, and tricks -- otherwise known as hacks -- that you can use to build and deliver real-life applications using ASP.NET.
Written with the seasoned professional in mind, this book examines how some hacks ultimately become mainstream code or practices that are integrated into a product or process. You'll benefit from the extensive experience of the authors as they show you how to adapt various hacks to your specific application and business environment. Plus, in-depth discussions of the solutions prove to be a helpful way to learn more about the inner workings of ASP.NET 2.0.
What you will learn from this book:
- Various hacks such as page templates, multiple forms, URL rewriting, and SQL cache dependencies
- The many improvements in ASP.NET 2.0 that were originally hacks but are now part of the base product
- How the many new built-in functions reduce the amount of code you need to write for the most common applications
>> Read Chapter 14: Security Hacks
>> Buy the book
|
|
Rate this Tip
|
To rate tips, you must be a member of SearchSoftwareQuality.com.
Register now
to start rating these tips. Log in if you are already a member.
|
 |
 |
| |
RELATED CONTENT
 |
Application Security Book Excerpts |
|
Fuzzing for Software Security Testing and Quality Assurance: Chapter 3, Testing for Quality
|
|
Software Security Engineering: A Guide for Project Managers -- Chapter 3, Requirements Engineering for Secure Software
|
|
InfoSecurity 2008 Threat Analysis, Chapter 4: XSS Theory
|
|
Google Hacking for Penetration Testers, Volume 2: Chapter 6, Locating Exploits and Finding Targets
|
|
Ajax Security -- Chapter 6, Transparency in Ajax Applications
|
|
Fuzzing: Brute Force Vulnerability Discovery -- Chapter 12, Fuzzing Frameworks
|
|
Cross Site Scripting Attacks: XSS Exploits and Defense -- Chapter 5, Advanced XSS Attack Vectors
|
|
Static Analysis as Part of the Code Review Process -- Chapter 3, Secure Programming with Static Analysis
|
|
Security Metrics: Replacing Fear, Uncertainty, and Doubt -- Chapter 3, Application Security Metrics
|
|
Forms Authentication -- Chapter 5, Professional ASP.NET 2.0 Security, Membership, and Role Management
|
|
DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.
|
|
|
|
|
|
|
