locked
List of Security aspects to be incorporated while developing WEB Application Using ASP.Net RRS feed

  • Question

  • User817589436 posted

    Need to know the List of Security aspects to be incorporated while developing WEB Application Using ASP.Net 

    Friday, June 13, 2014 7:09 AM

Answers

  • User1140095199 posted

    Hi,

       Greetings!

    Need to know the List of Security aspects to be incorporated while developing WEB Application Using ASP.Net 

    Few most familiar list of threats are:

    • Injection
    • Cross-Site Scripting (XSS)
    • Broken Authentication and Session Management
    • Insecure Direct Object References
    • Cross-Site Request Forgery (CSRF)
    • Security Misconfiguration
    • Insecure Cryptographic Storage
    • Failure to Restrict URL Access
    • Insufficient Transport Layer Protection
    • Unvalidated Redirects and Forwards

    If you are looking for a overview.

    Refer to the following articles:

    http://www.codeproject.com/Articles/35218/Securing-ASP-NET-Applications

    https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet - SQL Injection Prevention Cheat Sheet

    AntiXSS helps you to protect your current applications from cross-site scripting attacks, at the same time helping you to protect your legacy application with its Security Runtime Engine. Working with customer and partner feedback, AntiXSS incorporates radically and innovatively rethought features, offering you a newer, more powerful weapon against the often employed cross-site scripting (XSS) attack.

    More information and download:

    http://msdn.microsoft.com/en-gb/security/aa973814.aspx

    http://wpl.codeplex.com/releases/view/80289

    You may do some research and find different ways to prevent your web app against the above mentioned threats.

    Thank You for posting this issue in ASP.NET Forum.

    Best Regards!

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Monday, June 16, 2014 4:30 AM

All replies

  • User-821857111 posted

    This is something you can find very easily yourself by typing "ASP.NET Security Checklist" into Google or Bing.

    Friday, June 13, 2014 7:17 AM
  • User-492460945 posted

    This is something you can find very easily yourself by typing "ASP.NET Security Checklist" into Google or Bing.

    Exactly..

    Friday, June 13, 2014 7:20 AM
  • User1140095199 posted

    Hi,

       Greetings!

    Need to know the List of Security aspects to be incorporated while developing WEB Application Using ASP.Net 

    Few most familiar list of threats are:

    • Injection
    • Cross-Site Scripting (XSS)
    • Broken Authentication and Session Management
    • Insecure Direct Object References
    • Cross-Site Request Forgery (CSRF)
    • Security Misconfiguration
    • Insecure Cryptographic Storage
    • Failure to Restrict URL Access
    • Insufficient Transport Layer Protection
    • Unvalidated Redirects and Forwards

    If you are looking for a overview.

    Refer to the following articles:

    http://www.codeproject.com/Articles/35218/Securing-ASP-NET-Applications

    https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet - SQL Injection Prevention Cheat Sheet

    AntiXSS helps you to protect your current applications from cross-site scripting attacks, at the same time helping you to protect your legacy application with its Security Runtime Engine. Working with customer and partner feedback, AntiXSS incorporates radically and innovatively rethought features, offering you a newer, more powerful weapon against the often employed cross-site scripting (XSS) attack.

    More information and download:

    http://msdn.microsoft.com/en-gb/security/aa973814.aspx

    http://wpl.codeplex.com/releases/view/80289

    You may do some research and find different ways to prevent your web app against the above mentioned threats.

    Thank You for posting this issue in ASP.NET Forum.

    Best Regards!

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Monday, June 16, 2014 4:30 AM