“Chishiki” is Japanese for “knowledge.” e-chishiki.com aims to bring software developers, information security professionals, IT executives and other IT pros a rich body of knowledge in the form of articles, interviews, tutorials and technical discussions. Our contributors are among the biggest names in the Indian IT industry and include noted authors, educators and practitioners.
Online Book Preview – Microsoft .NET Framework Web Application Security
Chapter 1: Security Principles and the SDL (Online Book Preview)
Microsoft .NET Framework Web Application Security
The following is an excerpt from Vijay Mukhi's upcoming book "Microsoft .NET Framework Web Application Security."
Introduction
Microsoft, the software giant, has become a trendsetter when it comes to implementing secure software. Even though we do not regard ourselves as Microsoft fanatics, we do acknowledge that they have made great efforts to remain as leaders in the security world. At the same time, we cannot ignore the remarkable achievements of the Linux community, and companies such as IBM, and we salute them for their stands, as well as whole-heartedly supporting the open source movement (http://open-source.org). As a developer, one prefers simplicity and adaptability in applications, and the healthier the competition, the better for us all, as in the end it will be programmers like us who will reap the most benefits. In the past, enforcing the security of applications or networks was a nuisance when there was no market for security-related products, but today this is big business, as every industry wants to safeguard its infrastructure from attackers.
This chapter discusses broader issues such as security principles and Microsoft’s Security Development Lifecycle (SDL).
