.NET news » Security

This sample shows how to switch between security contexts within the same process. It also demostrates how this can be done on a single or multiple threads.

An effective implementation of the CAST-128 algorithm (ECB and CBC modes)

This article is devoted to consideration of practice with recommendations on how to use these options for protection not only against reverse engineering and deobfuscation, but also for protection of algorithms and data contained in .Net assemblies. Spices.Obfuscator is a tool for protecting different kinds of assemblies from managed C++ assemblies , ASP.Net, Windows.Forms and Compact.Framework assemblies. The Spices.Obfuscator tools can be customized by means of ObfuscationOptions which can be seen in Spices.Project for each project assembly. Open the assembly in Spices.Net, go to section Properties, open the property AssemblyList, and then open sub-properties to get the setting options of Obfuscator of each assembly.

It wasn't all that long ago that biometric authentication seemed like the kind of sci-fi technology that might never be practical outside of top-secret government laboratories. But believe it or not, you can build a fingerprint scanner into any .NET application you like just by following these simple instructions.

Is running .NET Framework code within SQL Server 2005 exciting or a threat? Which is it? This article explores the security issues of SQLCLR code so that both developers and DBAs can make informed decisions about its use.

Developers often store confidential information in the configuration files. Database connection strings, user names and passwords are some of the examples. One of the requested feature during ASP.NET 1.x days was to provide some way to easily encrypt and decrypt such information. Thankfully ASP.NET 2.0 fulfils this request in a flexible way...

This is a self paced workshop designed to lead you through the benefits and features of .NET security. There are over 50 code examples and many more walkthroughs showing you how to use the .NET security classes and how to administer .NET security policy. The workshop covers code access security, role based security, access control lists, symmetric and asymmetric cryptography, certificates, CMS/PKCS, data protection APIs, and encrypting and signing XML.

How to zip and unzip files avoiding the central directory

What InfoCard is, what it isn't, and what it means for the future of business and personal security on the Web.

Storing configuration data securely was always difficult. But it's a whole lot easier now with a powerful new set of APIs in ASP.NET 2.0 that allow you to manage the ASP.NET configuration file programmatically.