Difference between revisions of ".NET Security for Architects"

From OWASP
Jump to: navigation, search
(.NET Security for Architects)
(.NET Security for Architects)
Line 2: Line 2:
 
{| align="right" class="wikitable"
 
{| align="right" class="wikitable"
 
|-
 
|-
! OWASP Project Quick Reference
+
! Section Quick Reference
 
|-  
 
|-  
 
|  
 
|  
*[[OWASP Top 10 Project]]<br />
 
 
*[[OWASP Testing Guide]]<br />
 
*[[OWASP Testing Guide]]<br />
*[[.Net Assembly Analyzer]]<br />
 
*[[OWASP WebGoat Project]]<br />
 
*[[OWASP WebScarab Project]]
 
 
|-
 
|-
 
|}
 
|}

Revision as of 22:50, 31 March 2008

.NET Security for Architects

Section Quick Reference

Security concerns must be addressed at the architectural level. This section is to provide tools and guidance for the .NET architect.

Areas of Concern

  • Conceptual Architecture
  • Security Requirements & Threat Modeling
  • Design Review
  • Requirements Testing
  • Implementation
  • Separating Roles - Build Systems and Software Promotion

Articles

ASP.NET Security Architecture

Security Engineering

Solutions to SOA Security

Web Service Specifications

References

International Association of Software Architects

Patterns and Practices

Patterns and Practices Security Wiki

Tools