Difference between revisions of "OWASP .NET Recommended Resources"

From OWASP
Jump to: navigation, search
(Blogs & People)
(Articles & Projects)
Line 22: Line 22:
  
 
===Articles & Projects===
 
===Articles & Projects===
 
[http://msdn2.microsoft.com/en-us/library/yedba920.aspx ASP.NET Security Architecture]
 
 
[http://msdn2.microsoft.com/en-us/library/ms998404.aspx Security Engineering]
 
 
[http://www.developer.com/design/article.php/3607471 Solutions to SOA Security]
 
 
[http://en.wikipedia.org/wiki/WS-%2A Web Service Specifications]
 
 
[http://www.codeplex.com/WCFSecurity Security Guidance for Windows Communication Foundation]
 
  
 
[http://msdn.microsoft.com/en-us/library/ms978357.aspx Security and Operational Guidance for .NET Applications]
 
[http://msdn.microsoft.com/en-us/library/ms978357.aspx Security and Operational Guidance for .NET Applications]
 +
 +
[http://msdn2.microsoft.com/en-us/library/yedba920.aspx ASP.NET Security Architecture]
  
 
[http://msdn.microsoft.com/en-us/library/ms998404.aspx patterns & practices Security Engineering Index]
 
[http://msdn.microsoft.com/en-us/library/ms998404.aspx patterns & practices Security Engineering Index]
Line 42: Line 34:
  
 
[http://msdn.microsoft.com/en-us/library/ms978378.aspx Authentication in ASP.NET: .NET Security Guidance]
 
[http://msdn.microsoft.com/en-us/library/ms978378.aspx Authentication in ASP.NET: .NET Security Guidance]
 +
 +
[http://msdn2.microsoft.com/en-us/library/ms998404.aspx Security Engineering]
 +
 +
[http://www.developer.com/design/article.php/3607471 Solutions to SOA Security]
 +
 +
[http://en.wikipedia.org/wiki/WS-%2A Web Service Specifications]
 +
 +
[http://www.codeplex.com/WCFSecurity Security Guidance for Windows Communication Foundation]
  
 
===Online References===
 
===Online References===

Revision as of 23:51, 16 June 2008

OWASP .NET Quick Reference

Contents

OWASP .NET Recommended Resources

Areas of Concern

  • Getting Started
  • Tutorials
  • Best Practices
  • OWASP Guidance and Tools

Articles & Projects

Security and Operational Guidance for .NET Applications

ASP.NET Security Architecture

patterns & practices Security Engineering Index

patterns & practices Security Guidance for Applications Index

patterns & practices Security Guidance for .NET Framework 2.0

Authentication in ASP.NET: .NET Security Guidance

Security Engineering

Solutions to SOA Security

Web Service Specifications

Security Guidance for Windows Communication Foundation

Online References

Patterns and Practices

Patterns and Practices Security Wiki

MSDN Security Developer Center

Books and Publications

Writing Secure Code, Michael Howard and David LeBlanc

Microsoft Security Development Lifecycle 3.2

Building Secure ASP.NET Applications: Authentication, Authorization, and Secure Communication, J.D. Meier, Alex Mackman, Michael Dunner, and Srinath Vasireddy

Improving Web Application Security: Threats and Countermeasures, J.D. Meier, Alex Mackman, Michael Dunner, Srinath Vasireddy, Ray Escamilla and Anandha Murukan

Developer Highway Code, Microsoft Corp, United Kingdom

Tools

Microsoft Threat Analysis & Modeling v2.1.2

Blogs & People

Mark Curphrey's Blog

Michael Howard's Blog

J.D. Meier's Blog

Dominick Baier's Blog

Shawn Farkas' Blog