.NET Framework 2.0 Security Inspection Questions

From Guidance Share

Jump to: navigation, search

- J.D. Meier, Alex Mackman, Blaine Wastell, Prashant Bansode, Jason Taylor, Rudolph Araujo


Contents

Summary

Use security inspection questions for performing code inspections. Questions put you in the right state of mind when analyzing the code. The questions are organized by categories that are both actionable and tend to contain security issues. You can also chunk up your security inspection by the categories for iterative or incremental approaches.


What's New in 2.0


SQL Injection


Cross-Site Scripting


Input and Data Validation


Code Access Security


Exception Management


Impersonation


Sensitive Data


Cryptography


Unsafe Code


Potentially Dangerous Unmanaged APIs


Auditing and Logging


Multi-Threading


Related Items

Personal tools