Please recommend. I'm an ASP.NET MVC developer so would like technology-specific and high level books and also links to resources would be warmly received.
Thanks
A:
I've found Writing Secure Code from Microsoft to be a good resource for security practices. It's not web-specific, ie. it covers other programming aspects, not forgetting the cultural side. If you aren't familiar with security practices, I'd recommend you grab this one too.
jmz
2010-07-27 10:39:47
A:
You might start here: http://www.owasp.org/index.php/Main_Page looking for resources.
S.Lott
2010-07-27 10:42:51
The solution is too general, maybe poiting to the specific .Net link will be better: http://www.owasp.org/index.php/Category:OWASP_.NET_Project
Pedro Laguna
2010-07-27 13:30:47
Look for the "OWASP Top Ten" Project for an overview of most critical security risks/problems and the "OWASP guide" for the detailed description of each type of vulnerability. This is language agnostic, but most vulnerabilities affect all languages, so you need to understand the concepts in addition to seeing examples of how they affect .NET
fms
2010-07-27 19:06:23