As part of the Microsoft commitment to trustworthy
computing, the Patterns and Practices group has created a guide that describes
how to implement fundamental security principles across ASP.NET, Microsoft
ADO.NET, Microsoft Enterprise Services, Microsoft Remoting, and Microsoft XML
Web services in the context of intranet, extranet, and Internet applications.
The architectural and design guide focuses on:
| � | Authentication - How to identify users of your
application |
| � | Authorization - How to provide access control to the users
of your application |
| � | Secure communication - How to make sure that messages
remain private and are not changed by unauthorized parties |