Requesting Admin Approval at Application Start by Mohammad Elsheimy on Oct 16, 2009
Learn how to make your application requests UAC elevation (in Windows Vista and later versions) at start.

How to get permissions assign to current assembly in VS.NET 2005 using C# by Sonu Chauhan on Jun 26, 2009
The following code will explain the permissions which are assigned to a current assembly.

Code Access Security using C# in VS.NET 2005 by Sonu Chauhan on Jun 22, 2009
This article will focus on the definition and configuration of the Code Access Security Policy.

A Glance at Web Application Security by Pietros Ghebremicael on Jun 08, 2009
Web application security involves implementing protective measures against potential threats, malicious or unintentional, that exploit exposed vulnerabilities. Security is best implemented using the defence-in-depth technique by applying protective measures at network, host, and web application levels. This article will focus on security at the application level by exploring IIS and ASP.net authentication, authorization and secure communication.

Introduction to SLP Services Configuration by Sateesh Kumar on Mar 23, 2009
This article explains about adding products/feature sets followed by Code Protection Integration using SLP Online Services.

How we configure interfaces of PIX or ASA by Parveen Malik on Jan 12, 2009
A pix or firewall can have up to the 10 interfaces based upon PIX or ASA version and Interface module install on it.

Test for Desktop User Group Membership with C# by Scott Lysle on Nov 10, 2008
This article describes a simple approach to determining whether or not a logged in user is a member of a group within the context of a desktop application. The approach shown relies upon the use of the user’s current Windows identity.

Test for User Group Membership in ASP.NET C# by Scott Lysle on Oct 14, 2008
This article describes a simple approach to determining whether or not a logged in user is a member of a group within the context of an asp.net web based application.

Attaching a digital certificate (public key) to an HTTPS request by Rehan Ahmad Abbasi on Aug 11, 2008
This article will guide you on how to post data to an HTTPS (i.e., secure connection) URL from a Windows application (.NET) by attaching a digital certificate from a certificate file and getting the response back.

Encrypt and decrypt sensitive metadata within your Config file by Bechir Bejaoui on Jun 19, 2008
In a certain cases, metadata embedded within your configuration file is sensitive. In fact, imagine that you develop an application that uses a data base as data source; all information about this data base is located in the configuration file. What if a hacker success to log into your configuration files and obtains the connection string and other metadata about your data base??

Using symmetric algorithms to encrypt data by Bechir Bejaoui on May 21, 2008
In this article, I will propose a method of how to encrypt data and store it using symmetric algorithms whose are, in fact, four integrated classes within the .Net framework, namely DES,RC2,Rijndael and TripleDES but I will perform the task using the two last ones as they are the mostly used in real time cases.

Cryptography in Asp.net by Rajendra Kumar Yerra on Sep 07, 2007
This article explains what is Cryptography? Why it is needed? and the types of Cryptography.

Authentication-Authorization / Windows built-in Role enumeration by Munir Shaikh on Aug 07, 2007
In this article I will be talking about authentication and authorization. Authentication is the process which uses users cridential to validate against system, where as Authorization is the process the authenticated user has rights to do some specific task.

Set up Secure Sockets Layer (SSL) using Digital Certificates by Anand Thakur on Mar 06, 2007
This article explains how to secure an IIS Web application using SSL certificates.

File Tampering Detection by Scott Lysle on Mar 06, 2007
This article describes an easy approach to determining whether or not two files are exactly the same.

.NET SQL Authorization Manager by Andrea Ferendeles on Feb 01, 2007
.NET Sql Authorization Manager (AzMan x .NET 2.0) allows you to set Item-based permissions for Authorization Manager-enabled Microsoft.NET 2.0 applications. Storage reside on a MS Sql Server DataBase and can be administrated by a managed MMC 3.0 Snap-In.

LDAP Access Control for ASP.Net by Wojtek Piaseczny on Feb 01, 2007
This is an example of how to build an ASP.NET LDAP authentication application using ADAM. This article describes how to configure ADAM for regular LDAP communication and build a boilerplate ASP.NET application on top of it.

ASP.NET security with SQL Server 2005 by Sanjay Gulati on Jan 31, 2007
This article focuses on security concerm when using SQL Server 2005 in ASP.NET application.

How to maintain a CodeGroup in Security Policy at Runtime? by Subramanian Veerappan on Jan 31, 2007
Whenever protected resources are accessed by an assembly, it’s permissions are determined by the code access security system of CLR. Each permission set granted to an assembly is based on the assembly's evidence (such as its URL or publisher certificate, strong name), which in turn is based on configurable security policy.

10 Measures to Reduce Credit Card Fraud for Internet Merchants by fraudlabs inc on Jan 30, 2007
The purpose of this document is to introduce 10 preventative measures that merchants can take in order to minimize credit card fraud. In addition, we would like to take this opportunity to introduce a complete suite of FraudLabs™ Web Services specializing in the analysis of credit card fraud risk for Internet merchants.

Security Steps for Strong Authentication by Sonu Chauhan on Jan 29, 2007
Weak authentication increases the identity spoofing threat. If a user’s logon credentials fall into the wrong hands, an attacker can spoof the user’s identity and gain access to the application. The attacker shares all of the user’s privileges in the application. Credentials must be protected as they are passed over the network and while they are persistent

Integrated Security with Web Application by Shrikant Utekar on Jan 29, 2007
This article will give you an idea about how Integrated Security works with Web Application using Active Directories.

Code Access Security - Implementing publishers based security using digital certificates by Anand Thakur on Dec 02, 2006
This article explains how to implement publishers based security using digital certificates.

Simple Password Encryption Program by Joshy George on Oct 31, 2006
This article shows you how to make a simple password encryption program.

Database Provider-based ASP.NET Membership Provider by John Mcfetridge on Oct 17, 2006
This article is intended to explore the provider pattern in the context of a membership provider.

Bonnie.NET Standard Edition by Matteo Slaviero on Aug 29, 2009
“Bonnie.NET” is a cryptographic API written for the Microsoft® .NET Framework. It allows the generation and management of cryptographic objects based on the today most used cryptographic algorithms. “Bonnie.NET” implements almost all the instruments needed when developing code with enhanced data protection based on cryptography.

How do I request the permissions my code needs? by Mahesh Chand on Apr 02, 2007
Since you do not necessarily have control over what permissions are assigned to the code you write, the common language runtime provides a mechanism for requesting the permissions that you feel your code must have in order to run properly.

How do I check the Windows Identity in a client application? by Mahesh Chand on Apr 02, 2007
User identity is a common means of controlling access to a business application or limiting the options available within that application. The .NET Framework classes under the namespace System.Security.Principal are provided to assist in making such role-based security determinations.

New and Improved Security in the .NET Framework 2.0 by Mahesh Chand on Jan 19, 2006
Find out how the .NET Framework 2.0 and Visual Studio 2005 equip software development teams with several new features, tools, and aids to assist them in incorporating security features with minimal stress.