ASP.NET 2.0 Security Inspection Questions

From Guidance Share

Jump to: navigation, search

- J.D. Meier, Alex Mackman, Blaine Wastell, Prashant Bansode, Jason Taylor, Rudolph Araujo

Contents

Summary

Use security inspection questions for performing code inspections. Questions put you in the right state of mind when analyzing the code. The questions are organized by categories that are both actionable and tend to contain security issues. You can also chunk up your security inspection by the categories for iterative or incremental approaches.


What's New in 2.0


Auditing and Logging


Authentication


Authorization


Code Access Security


Cross-Site Scripting


Cryptography


Data Access


Exception Management


Forms Authentication


Impersonation


Input and Data Validation


Sensitive Data


SQL Injection


Unsafe Code


Potentially Dangerous Unmanaged APIs


Related Items

Personal tools