Welcome to MSDN Blogs Sign in | Join | Help

October 2008 - Posts

Using Role Based Access Control in the .NET Framework - Part 2
Vineet Batta here again.. In my last blog I discussed how to use role based access control (RBAC) and described how we can restrict access to the method based on the declarative method. In today's blog I will explain how to use Imperative role based demands. Read More...
Posted: Wednesday, October 29, 2008 9:05 AM by cisg | 1 Comments
Filed under:
Using Role Based Access Control in the .NET Framework - Part 1
Hi Vineet Batta here.. Consider a scenario where you want to write an assembly which contains methods that only certain type of users can call (domain\Administrators or a specific custom users account). So how can we control this within code and let the Read More...
Posted: Tuesday, October 28, 2008 7:31 PM by cisg | 1 Comments
Filed under:
ISO/IEC JTC 1/SC 27 - Working Group - Trip Report
Hi Andreas Fuchsberger here again.... Introduction The most recent ISO/IEC JTC1/SC 27 (Subcommittee) Working Group (WG) meetings took place from 6 th – 10 th October 2008 in Limassol, Cyprus. As is set out by SC27’s charter all 5 Working Group Read More...
Posted: Friday, October 24, 2008 2:31 PM by cisg | (Comments Off)
Filed under: ,
ISO SC27 Introduction and History
Hi Andreas Fuchsberger here..... In order to better understand a report I am about to post next on a recent ISO security meeting I thought I would include some additional information about the language used in SC 27 and how SC 27 standards are created. Read More...
Posted: Friday, October 24, 2008 2:29 PM by cisg | 1 Comments
Filed under: ,
A Sneak Peak at the Security Runtime Engine
RV here again... Traditionally security fixes are applied to specific pieces of code where a vulnerability exists which usually involves some development and testing effort. Imagine a system where an application is instantly secured by simple configuration. Read More...
Posted: Friday, October 24, 2008 9:14 AM by cisg | 4 Comments
Filed under: ,
Introducing SecurityNow
Mark Curphey here..... A few months back I challenged some of my team to build a "Proof of Concept" (POC) that would; demonstrate how we could apply some of the ideas and concept we had been talking about such as BPM and BI show how Microsoft's Read More...
Posted: Friday, October 17, 2008 11:52 AM by cisg | (Comments Off)
Secure Strings in .NET - Part I
Hi Gaurav Sharma here....... I am a developer on the CISG India team based in Hyderabad and I joined Microsoft four months ago. I love playing computer games and recently finished Call of duty 4. For the last three years I've been working with .NET and Read More...
Posted: Wednesday, October 08, 2008 4:25 PM by cisg | 7 Comments
ASP.NET Data Binding and AntiXss Encoding
Hi RV here again... Last time I looked at ASP.NET controls and few common scenarios where you need to use encoding. Couple of weeks back we looked at a sample data binding scenario. This time lets exclusively look at various ASP.NET data binding techniques Read More...
Posted: Wednesday, October 01, 2008 10:50 AM by cisg | 2 Comments
Filed under: , ,
Page view tracker