Application Security in .NET

Application Security in .NET

Overview/Description
Target Audience
Prerequisites
Expected Duration
Lesson Objectives
Course Number
Expertise Level

Overview/Description
Explore the concepts related to securing a .NET application, including authentication, .NET security namespaces, permissions, role-based security, and impersonation. This course introduces you to .NET framework security, authentication, secure code, and security namespaces. Next, you will learn about the Microsoft Security Development Lifecycle (SDL), permissions and role-based security, the WindowsPrincipal object, and how to replace principal objects. Examine GenericPrincipal and GenericIdentity objects. Recognize .NET impersonation. Discover the benefits of claims-based security. Finally, as a review exercise, you will identify key features of .NET application security and how security is implemented.

Target Audience
Individuals interested in learning the fundamental concepts of secure programming, or experienced programmers wishing to refresh or improve their skills. Previous programming experience with C/C++ or .NET may be beneficial

Prerequisites
None

Expected Duration (hours)
0.9

Lesson Objectives

Application Security in .NET

start the course

identify the key features of security in the .NET framework

describe how authentication works in .NET

recognize the key features of secure coding in the .NET Framework

list and describe the key .NET security namespaces

define what the Microsoft Security Development Lifecycle (SDL) is

describe how role-based security and permissions are used in .NET

demonstrate how to use the WindowsPrincipal object in .NET

recognize the purpose of replacing Principal objects

compare GenericPrincipal and GenericIdentity objects

describe how impersonation works in .NET

use imperative security checks in .NET

identify key features of .NET application security and how security is implemented

Course Number:
sd_secp_a05_it_enus

Expertise Level
Intermediate