Microsoft ASP.NET Coding Strategies with the Microsoft ASP.NET Team (Pro-Developer)

Designing and implementing Web application security is much easier and more robust with ASP.NET than in the past. In this chapter, we looked at the available options in ASP.NET and how they work hand-in-hand with IIS to authenticate users and authorize their actions.

Think of security first when designing a Web application instead of trying to inject it into the written application. Microsoft has more information online than is provided in this chapter, including a description of several scenarios and the associated step-by-step instructions for implementing your chosen security model. See http://www.msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/html/secnetlpMSDN.asp for more information.