ASP.NET: Security

Author

Christian Wenz

Skill Level Intermediate

2h 26m

Duration

7,181

Views

Show More Show Less

- [Christian] According to a recent study, nine out of 10 web applications have security vulnerabilities. Most of the time, it's the developer's fault, unfortunately. In other words, making a web application secure seems to be virtually impossible. Fortunately, there is hope. ASP.net comes with some built-in security features, some that are activated by default, but some need configuration, or even some coding to work. These security features are countermeasures for the most common and dangerous attacks. As you will see, ASP.net is highly configurable in terms of web application security. In this LinkedIn Learning course, I dive into all the risks and ASP.net application phases and how developers can mitigate them. My name is Christian Wenz. I started with web application security in the late 1990s and never looked back. Join me in making web applications more secure. Let's get started.

Resume Transcript Auto-Scroll

Related Courses

Introduction
- Unhackable ASP.NET applications
  1m 5s
- Security is important!
  2m 39s
- What you should know
  1m 22s
- Sample application introduction
  3m 55s
- Sample application tour
  3m 15s
1. Mitigating Common Attacks
- OWASP Top 10
  3m 36s
- Cross-site scripting (XSS): The attack
  5m 10s
- Cross-site scripting (XSS): The defense
  4m 18s
- Cross-site scripting (XSS) in JavaScript
  5m 19s
- Same-origin policy and CORS
  5m 12s
- Enabling CORS in ASP.NET Web API
  6m 20s
- SQL injection with ADO.NET
  3m 56s
- SQL injection with Entity Framework
  3m 32s
- Fixing SQL injection
  4m 27s
- Cross-Site Request Forgery (CSRF)
  4m 40s
- Defending against CSRF
  4m 24s
2. Storing Data
- Storing secrets in Web.config
  4m 19s
- Externalizing Web.config settings
  3m 35s
- Encrypting Web.config
  4m 21s
- Azure Key Vault
  2m 36s
- Managing the Key Vault with Azure Shell
  4m 45s
- Password hashing
  1m 20s
- Adding password hashing to the app
  3m 18s
3. Starting with IdentityServer
- On IdentityServer
  4m 33s
- Configuring IdentityServer
  6m 2s
- Authenticating against IdentityServer
  2m 25s
- Authenticating in the app
  4m 45s
- Authorizing against IdentityServer
  3m 42s
- Authorizing in the app
  2m 56s
4. Secure Configuration
- Introduction
  27s
- Securing cookies
  6m 11s
- Securing sessions
  6m 7s
- Setting cookie attributes in the app
  1m 37s
- Enforcing HTTPS
  3m 12s
- Error handling
  4m 6s
- Hiding server information
  2m 50s
- Hiding more server information
  3m 34s
- Security HTTP headers
  4m 15s
Conclusion
- Next steps
  2m 23s

Show MoreShow Less

Take notes with your new membership!

Type in the entry box, then click Enter to save your note.

1:30Press on any video thumbnail to jump immediately to the timecode shown.

Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.

Start My Free Month

Skills covered in this course

Developer Web Web Development ASP.NET Visual Studio

Lynda.com is now LinkedIn Learning!

To access Lynda.com courses again, please join LinkedIn Learning

How does my subscription work?

Can I use a different payment method?

Categories

3D + Animation Topics

3D + Animation Software

3D + Animation Learning Paths

Audio + Music Topics

Audio + Music Software

Audio + Music Learning Paths

Business Topics

Business Software

Business Learning Paths

Business Guides

CAD Topics

CAD Software

CAD Learning Paths

Design Topics

Design Software

Design Learning Paths

Developer Topics

Developer Software

Developer Learning Paths

Education + Elearning Topics

Education + Elearning Software

Education + Elearning Learning Paths

IT Topics

IT Software

IT Learning Paths

Marketing Topics

Marketing Software

Marketing Learning Paths

Photography Topics

Photography Software

Photography Learning Paths

Video Topics

Video Software

Video Learning Paths

Web Topics

Web Software

Web Learning Paths

Web Guides

ASP.NET: Security

Author

Skill Level Intermediate

Duration

Views

Related Courses

ASP.NET MVC 5 Identity: Authentication and Authorization

ASP.NET MVC: Building for Productivity and Maintainability

ASP.NET MVC: HTTP Request Life Cycle

ASP.NET MVC 5 Essential Training

Introduction

1. Mitigating Common Attacks

2. Storing Data

3. Starting with IdentityServer

4. Secure Configuration

Conclusion

Take notes with your new membership!

Skills covered in this course

Continue Assessment

Start My Free Month