http://blogs.msdn.com/joselcs/archive/tags/Security/default.aspxTags: Securityen-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.msdn.com/joselcs/archive/2004/03/24/more-on-secure-code.aspxThu, 25 Mar 2004 00:36:00 GMT91d46819-8472-40ad-a661-2c78acb4018c:95300joselcs1http://blogs.msdn.com/joselcs/comments/95300.aspxhttp://blogs.msdn.com/joselcs/commentrss.aspx?PostID=95300<P>Since my <A href="http://blogs.msdn.com/joselcs/archive/2004/03/19/92573.aspx">post on Secure Code</A> I have been searching for resources on Microsoft about writting secure code. I have found a <A href="http://msdn.microsoft.com/security/securecode/">dedicated page</A> on&nbsp;the Microsoft Security Developer Center,&nbsp;a <A href="http://msdn.microsoft.com/library/en-us/dnnetsec/html/secnetlpMSDN.asp">PAG guide</A>, some <A href="http://www.microsoft.com/security/guidance/topics/DevSecApps.mspx">guides and checklists</A>, some <A href="http://msdn.microsoft.com/security/downloads/samples/default.aspx">code samples</A>, the tool <A href="http://www.microsoft.com/windows/appcompatibility/appverifier.mspx">Windows Application Verifier</A>,&nbsp;the book <A href="http://www.microsoft.com/mspress/books/5957.asp">"Writting Secure Code, Second Edition"</A>, and not in the Microsoft site but related with the subject,&nbsp;a zdnet's <A href="http://itpapers.zdnet.com/abstract.aspx?dtid=2&amp;scid=912&amp;docid=66888">WebCast</A>, and&nbsp;a University of Leeds's <A href="http://www.comp.leeds.ac.uk/cgi-bin/sis/ext/handbook_pub.cgi?cmd=displayentry&amp;module=COMP5160M">module</A>.</P> <P>I would like to know if you find these resources&nbsp;useful and what do you miss.</P><img src="http://blogs.msdn.com/aggbug.aspx?PostID=95300" width="1" height="1">DevelopmentSecurityhttp://blogs.msdn.com/joselcs/archive/2004/03/19/secure-code.aspxFri, 19 Mar 2004 19:16:00 GMT91d46819-8472-40ad-a661-2c78acb4018c:92573joselcs4http://blogs.msdn.com/joselcs/comments/92573.aspxhttp://blogs.msdn.com/joselcs/commentrss.aspx?PostID=92573I have been involved on a local focus group about writing secure code. Basically the idea is think about how Microsoft can help the developers in doing secure code, with a similar meaning as the book <A href="http://www.microsoft.com/MSPress/books/5957.asp">Writing Secure Code</A>. <BR>I would like to ear about what we are doing well and bad, what is more important (for instance, help in the design, construction or testing phase, samples, guides...), and, of course, what can we do for having more secure code developed on the .NET platform. <img src="http://blogs.msdn.com/aggbug.aspx?PostID=92573" width="1" height="1">DevelopmentSecurity