Dominick Baier splits his time between being an independent security consultant and an instructor for DevelopMentor - teaching and authoring the ASP.NET and the .NET security curriculum. He has a degree in computer science (German Diplom Ingenieur), is a certified BS7799/ISO17799 Lead Auditor and speaks at various conferences (WinDev, DevWeek, ADC) about application security. When not teaching he spends his time researching security, doing audits and penetration tests and helps other developers around the world to build more secure applications. Dominick maintains a security blog at http://www.leastprivilege.com.
Web application security | p. 1 |
ASP.NET 2.0 architecture | p. 9 |
Input validation | p. 23 |
Storing secrets | p. 71 |
Authentication and authorization | p. 121 |
Security provider and controls | p. 209 |
Logging and instrumentation | p. 261 |
Partial trust ASP.NET | p. 307 |
Deployment and configuration | p. 347 |
Tools and resources | p. 373 |
Building a custom protected configuration provider | p. 401 |
Session state | p. 405 |
Compartmentalizing ASP.NET applications | p. 413 |
Secure Web services | p. 421 |
Unit testing Web applications using visual studio team edition | p. 425 |
Table of Contents provided by Blackwell. All Rights Reserved. |
The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.
The Used, Rental and eBook copies of this book are not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.