Optimizing and Protecting Application Data


Overview/Description
Target Audience
Prerequisites
Expected Duration
Lesson Objectives
Course Number
Expertise Level



Overview/Description
In order to develop efficient, robust web applications, we must understand how to implement key web optimization techniques as well as key ASP.NET security features. In this course, you will learn how to use compression to reduce network bandwidth, how to implement custom encryption and decryption of application URLs, how to manage validation and prevent cross-site scripting and cross-site request forgery attacks, and how to implement a custom membership provider for ASP.NET MVC web applications. This course is one of a series in the Skillsoft learning path that covers the objectives for the Microsoft MCSD exam 70-486.

Target Audience
Web developers seeking an introductory guide to developing efficient, secure, distributed web applications with adaptive user interfaces using the ASP.NET MVC 4 and 5 frameworks in Visual Studio 2013; Individuals preparing for exam 70-486: Developing ASP.NET MVC Web Applications

Prerequisites
None

Expected Duration (hours)
3.0

Lesson Objectives

Optimizing and Protecting Application Data

  • start the course
  • observe the effect on network performance with bundling and minifying application scripts versus serving individual, full-size scripts in ASP.NET MVC web application
  • check a browser client's Http request encoding header for Gzip compression support in ASP.NET MVC web application
  • check a browser client's Http request encoding header for Deflate compression support in ASP.NET MVC web application
  • use Gzip compression to encode Http response data in an ASP.NET MVC web application
  • use Deflate compression to encode Http response data in an ASP.NET MVC web application
  • use the Glimpse tool to observe client and server network activity in an ASP.NET MVC web application in Visual Studio 2013
  • set up a custom URL Encryption helper class in an ASP.NET MVC web application in Visual Studio 2013
  • define a custom URL Encryption method in an ASP.NET MVC web application in Visual Studio 2013
  • run application and test custom URL Encryption in browser address bar in an ASP.NET MVC web application in Visual Studio 2013
  • set up a custom URL decryption helper class in an ASP.NET MVC web application in Visual Studio 2013
  • define a custom URL decryption method in an ASP.NET MVC web application in Visual Studio 2013
  • run application and test custom URL decryption in browser address bar in an ASP.NET MVC web application in Visual Studio 2013
  • implement URL hashing so as to prevent URL parameter tampering in an ASP.NET MVC web application in Visual Studio 2013
  • use HTML form encoding to prevent cross-site scripting attacks in an ASP.NET MVC web application
  • create and apply a salt to a hashed password before storing it in an ASP.NET MVC web application
  • create and use an SSL client certificate to provide SSL authentication in an ASP.NET MVC 4 web application
  • encrypt a section of a application configuration file in ASP.NET MVC web application in Visual Studio 2013
  • implement deferred request validation in an ASP.NET MVC web application
  • use the AllowHtml attribute to disable request validation for a model property in an ASP.NET MVC web application
  • use the ValidateInput attribute to disable validation for an MVC controller action in an ASP.NET MVC web application
  • use parameterized SQL queries to prevent SQL injection attacks in an ASP.NET MVC web application
  • use an anti-forgery token along with the ValidateAntiForgeryTokenAttribute to protect against cross-site request forgery attacks in an ASP.NET MVC web application
  • set up a model class for a custom membership provider in an ASP.NET MVC web application in Visual Studio 2013
  • configure a custom membership provider in an ASP.NET MVC web application in Visual Studio 2013
  • test the operation of a custom membership provider in an ASP.NET MVC web application in Visual Studio 2013
  • understand concepts in implementing web optimization techniques, protecting application URLs, protecting application data, and implementing a custom membership provider for ASP.NET MVC web applications
  • Course Number:
    wd_dwap_a10_it_enus

    Expertise Level
    Intermediate