geekSpeak

geekSpeak recording: Web Application Security with Keith Brown

Download this episode

Download Video

Description

In this installment of the geekSpeak webcast series, we spend an hour pummeling security guru Keith Brown with questions about how to make your sites more secure. We cover a lot of ground, with questions around things like SQL injection, code signing, strong names, Windows CardSpace, identities and impersonation and CAS.

We talk about the importance of knowledge sharing and overlap between site administrators and developers, as well as the approach of separating control channels from data channels. Keith also shares his insights around security testing like techniques and tools. And if you've ever wondered what a honey pot is, now you can find out.

Keith really boils the most common security issues down to their simplest form, showing how it's not that hard to think about security while you are designing and coding - not afterwards.

You can find links mentioned in this geekspeak here http://blogs.msdn.com/geekspeak/archive/2007/07/13/resources-for-geekspeak-web-application-security-with-keith-brown.aspx which points to Keith's input validation module screencasts, his blog, many good books, and more.

Let us know through here and the geekSpeak blog what you'd like to see geekSpeaks in the future cover.

Tags:

ASP.NET, Security

Embed

Format

Available formats for this video:

Actual format may change based on video formats available and browser capability.

    The Discussion

    Comments closed

    Comments have been closed since this content was published more than 30 days ago, but if you'd like to continue the conversation, please create a new thread in our Forums, or Contact Us and let us know.