Good book on security?
-
I'm looking for an introductory book on (.NET) security. It's mostly unknown territory for me, and I'm not confident I'm making the right design decisions without knowing more. The context in which I'm working is .NET remoting, with remote objects hosted in IIS (so ssl seems sensible). Current idea is to pass user name/password in a CallContext object for each remoting call (with the ssl making it safe to do that). Opted not to use custom remoting sinks, because that part will change in WCF. Muchas gracias!
Wout
-
I'm looking for an introductory book on (.NET) security. It's mostly unknown territory for me, and I'm not confident I'm making the right design decisions without knowing more. The context in which I'm working is .NET remoting, with remote objects hosted in IIS (so ssl seems sensible). Current idea is to pass user name/password in a CallContext object for each remoting call (with the ssl making it safe to do that). Opted not to use custom remoting sinks, because that part will change in WCF. Muchas gracias!
Wout
Possibly not exactly what you're looking for, but have you looked at the "Developers Highway Code"[^] from the MSDN security center. MS usually hand it out at various events, and they have a PDF version for download. It's got a load of "tick lists" about what to do with security in different scenarios. Anyway, it's free. I've also previously purchased "Writing Secure Code" by M Howard, but it's quite basic, and nothing that you can't get from MSDN.
ChrisB ChrisDoesDev[^]
-
Possibly not exactly what you're looking for, but have you looked at the "Developers Highway Code"[^] from the MSDN security center. MS usually hand it out at various events, and they have a PDF version for download. It's got a load of "tick lists" about what to do with security in different scenarios. Anyway, it's free. I've also previously purchased "Writing Secure Code" by M Howard, but it's quite basic, and nothing that you can't get from MSDN.
ChrisB ChrisDoesDev[^]
Thank you so much Chris, that does look very useful!
Wout