Web Services Security

buffer overflow attacks (HTTP), 56

directory traversal attacks, 56

DoS attacks, protecting .NET servers against, 200–201

input validation attacks (Microsoft .NET), 195

Microsoft Passport, attacks against, 191–193

The New Hacker’s Dictionary, 69–70

replay attacks and SOAP-SEC, 77

SOAP requests, filtering by XML Firewall/XML proxy, 57

SOAP worms, 57

SQL injection attacks (Microsoft .NET), 56, 196–198

URL string attacks, 56

hashing algorithms, 27. See also encryption

HTTP (Hypertext Transport Protocol)

buffer overflow attacks on, 56

in navigating firewalls, 4–5

Secure HTTP (HTTPS), 233

and SOAP implementations, 42–43, 46–47, 57

as Web Services transport layer, 4