Improving Web Application Security: Threats and Countermeasures

For more information, see the following resources:

• Step-by-Step guide to IPSec at http://www.microsoft.com/windows2000/techinfo/planning/security/ipsecsteps.asp .

• IP Security for Windows 2000 Server at http://www.microsoft.com/windows2000/techinfo/howitworks/security/ip_security.asp .

• "How To: Use IPSec to Provide Secure Communication Between Two Servers" in the How To section of "Building Secure ASP.NET Applications" on MSDN.

• Article 313190, "How To: Use IPSec IP Filter Lists in Windows 2000" in the Microsoft Knowledge Base.

• Article 813878, "How to Block Specific Network Protocols and Ports by Using IPSec" in the Microsoft Knowledge Base.

• Article 313195, "How To: Use IPSec Monitor in Windows 2000" in the Microsoft Knowledge Base.

• IPSec considerations at http://www.microsoft.com/technet/treeview/default.asp?url=/technet/prodtechnol/winxppro/proddocs/sag_IPSECsec_con.asp?frame=true .