This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of ".NET Security for Architects"

From OWASP
Jump to: navigation, search
(.NET Security for Architects)
(.NET Security for Architects)
Line 1: Line 1:
 
==.NET Security for Architects==
 
==.NET Security for Architects==
 +
 
{| align="right" class="wikitable"
 
{| align="right" class="wikitable"
 
|-
 
|-
! Architectural Security Quick Reference
+
! OWASP Project Quick Reference
 
|-  
 
|-  
 
|  
 
|  
 
*[[OWASP Top 10 Project]]<br />
 
*[[OWASP Top 10 Project]]<br />
 +
*[[OWASP Testing Guide]]<br />
 +
*[[.Net Assembly Analyzer]]<br />
 +
*[[OWASP WebGoat Project]]<br />
 +
*[[OWASP WebScarab Project]]
 
|-
 
|-
 
|}
 
|}

Revision as of 03:46, 1 April 2008

.NET Security for Architects

OWASP Project Quick Reference

Security concerns must be addressed at the architectural level. This section is to provide tools and guidance for the .NET architect.

Areas of Concern

  • Conceptual Architecture
  • Security Requirements & Threat Modeling
  • Design Review
  • Requirements Testing
  • Implementation
  • Separating Roles - Build Systems and Software Promotion

Articles

ASP.NET Security Architecture

Security Engineering

Solutions to SOA Security

Web Service Specifications

References

International Association of Software Architects

Patterns and Practices

Patterns and Practices Security Wiki

Tools