none
High-level security question. RRS feed

  • Question

  • Hello all. I am starting to do early research on asp.net security and have found a very large (608 pages) paper fom MS: Building Secure ASP.NET Applications. Looks like a great starting place but it seems to have been written based on ASP.Net 1.0 so my question is this:

    Has the security model changed substantially between .Net 1.1 and 2.0 such that the paper is useless, or is the implementation between 1.1 and 2.0 close enough that it pays to read the paper?

    Thanks!

    Kurt
    Tuesday, March 3, 2009 9:09 PM

Answers

  • Hi!

    Though I'm not a web developer, I can say that many things have changed from 1.0 to 2.0 in terms of security. So I'd advise you to look for a newer security book. For other ASP.NET advices you should look in the ASP.NET forums: http://forums.asp.net/

    Regards,
    Lucian Baciu, http://studentclub.ro/lucians_weblog
    • Marked as answer by YiChun Chen Thursday, March 5, 2009 2:47 AM
    Wednesday, March 4, 2009 10:20 AM

All replies

  • Hi!

    Though I'm not a web developer, I can say that many things have changed from 1.0 to 2.0 in terms of security. So I'd advise you to look for a newer security book. For other ASP.NET advices you should look in the ASP.NET forums: http://forums.asp.net/

    Regards,
    Lucian Baciu, http://studentclub.ro/lucians_weblog
    • Marked as answer by YiChun Chen Thursday, March 5, 2009 2:47 AM
    Wednesday, March 4, 2009 10:20 AM
  • Thanks Naicul - don't know how I missed that forum.

    Kurt
    Wednesday, March 4, 2009 3:41 PM