New Security Features in ASP.NET—And How to Use Them

In the .NET platform, everything is “new.” This includes the implementation of methods previously available through other means, such as IIS and DCOM, and methods introduced in .NET. In the world of authenticating users to a resource, such as a Web site, Microsoft .NET provides four options, Basic, Windows, Forms-based and Passport.

For validating user authentication and authorization when it comes to code permissions, a.k.a. code access security, there is now the simple to implement method of impersonation. While this might not be late-breaking news, what is is the fact that now a user's principals can be changed by privileged code. Impersonation, in this case, means that through the Common ...

Get .NET Framework Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

.NET Framework Security by Brian A. LaMacchia, Sebastian Lange, Matthew Lyons, Rudi Martin, Kevin T. Price

New Security Features in ASP.NET—And How to Use Them

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly