O'Reilly logo

Application Architecture for .NET: Designing Applications and Services by Microsoft Corporation

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Designing the Security Policy

The security policy is concerned with authentication, authorization, secure communication, auditing, and profile management, as shown in Figure 3-2.

Aspects of the security policy

Figure 3-2. Aspects of the security policy

General Security Principles

There are some general security principles that should be considered whenever you are designing a security policy. Consider the following guidelines:

  • Whenever possible, you should rely on tested and proven security systems rather than building your own custom solution. Use industry-proven algorithms, techniques, platform-supplied infrastructure, and vendor-tested and supported technologies. If you decide ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required