| Publisher | Microsoft | ||
|---|---|---|---|
| Format | Webcast | Date added | 27 Apr 2007 |
| Topics | Programming Languages, Security Management, .NET | ||
| Downloads | 13 | ||
The attendee of this webcast will discover one of the most overlooked security features of Microsoft ASP.NET, Code Access Security (CAS). By default, the applications have access to powerful functionality, like calling out to arbitrary unmanaged code, accessing code in other application domains, and accessing every feature of the Microsoft .NET Framework. The presenter shows how one can use CAS to disable dangerous APIs, or restrict them to only the features needed. The presenter illustrates how this dramatically reduces the attack surface and enables to use the principle of least privilege and defense-in-depth design.
Did you find this white paper useful?
25 out of 50 users found this white paper useful
Related white papers
Software Engineering Today - Best Practices & Patterns
This is the final webcast in the 15 part series ?Modern Software Development in .NET Using Visual Basic?. Developers shouldn?t miss this opportunity to examine the following topics with renowned...
Market-Leading Data-Modeling Tools: Research Report from the Burton Group
The Burton Group provides an in-depth research report on Market-Leading Data-Modeling Tools. According to their research, basic data modeling tools have become commoditized - basic features are yesterday's...
The Converging Paths of SQL Server and SharePoint - Don't Wait Until It's Too Late!
SharePoint and SQL server have much in common, and understanding their similarities will help you streamline your day-to-day tasks and help you work more efficiently. Do you know what those...
Supporting Employees Anytime, Anywhere
New business demands require a new approach to end-user support. This is leading organizations to a remote service delivery model that leverages the Web and Saas technology
The Pursuit of a Standardized Solution for Secure Enterprise RBAC
Each RBAC implementation varies in its capabilities and method of management. In a multi-platform environment, these differences introduce higher administration hours and costs because the various RBAC models are not...
Combining the Power of Rhapsody Model-Driven Development, UML and Hitex Tools to Streamline the Development of 8, 16, and 32 Bit Applications
Studies have shown that software is now the main bottleneck for most embedded systems projects. According to Embedded Market Forecasters, 56% of all embedded designs are behind schedule, and software...
Massive But Agile: Best Practices for Scaling the Next-Generation Enterprise Data Warehouse - Forrester Report
Information and knowledge management (I&KM) professionals continue to expand the scale, scope, and deployment roles for their enterprise data warehouse (EDW) investments. Information managers are adopting EDW best practices that...
