O'Reilly logo

Improving Web Application Security: Threats and Countermeasures by Microsoft Corporation

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Managed Code

Use the review questions in this section to analyze your entire managed source code base. The review questions apply regardless of the type of assembly. This section helps you identify common managed code vulnerabilities. For more information about the issues raised in this section and for code samples that illustrate vulnerabilities, see Chapter 7.

If your managed code uses explicit code access security features, see Code Access Security later in this chapter for additional review points. The following review questions help you to identify managed code vulnerabilities:

  • Is your class design secure?

  • Do you create threads?

  • Do you use serialization?

  • Do you use reflection?

  • Do you handle exceptions?

  • Do you use cryptography?

  • Do you store secrets? ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required