A new book in the Secure Software Development Series, this time from Dominick Baier is now available from Microsoft Press.
I reviewed a good number of the draft chapters, and got an early copy last week. What I love about this book is it’s complete. It covers ASP.NET 2.0 security features as well as security defenses and design and coding best practices. There’s also a chapter on the not-so-well-understood aspect of building and deploying least-privilege and partial trust ASP.NET 2.0 applications. This is a must-read chapter for Web site hosters.
You can get more info about the book here.