.NET news » Search results

Windows Communication Foundation (WCF) is a secure, reliable, and scalable messaging platform for the .NET Framework 3.0.With WCF, SOAP messages can be transmitted over a variety of supported protocols including IPC (named pipes), TCP, HTTP and MSMQ. Like any distributed messaging platform, you must establish security policies for protecting messages and for authenticating and authorizing calls. This article will discuss how WCF accomplishes this.

Whenever you build a new system you should consider how an in¬truder might go about attacking it and then build in appropriate defenses at design time.

In this article, the author presents an extension to the Security Development Lifecycle Which could promote a better flow of information between users and designers of software security features.

This article discusses some new threats to your SQL Web app that include modifying SQL statements or injecting SQL code even if the code has escaped the delimiting characters.

• Why won't my simple Windows® Communication Foundation service start when I run it as a non-administrator?
• What is the best way to implement split knowledge and dual control of keys?

Password Manager is a System.Security usage example using SecureString and SymmetricAlgorithms.

Developers often concentrate on writing secure code but leave security vulnerabilities in application configuration files. Discover the most common configuration security problems—and how to avoid them.

Thanks to new types of hardware that can easily be programmed using .NET, you can create a motion sensing application that can be deployed for security—or just for fun.

This test tool helps developers of Windows Mobile applications test various security policies for Windows Mobile devices.

It is designed as a desktop application that ships with a preset list of "security configurations". A security configuration can be thought of as a template, which contains a collection of individual policies and settings. For example, a security configuration could define policies such as whether unsigned applications are allowed to execute, whether RAPI is disabled etc. Using this tool, the developer can provision a Windows Mobile device with different configurations, and then test the application's behavior under these configurations. This tool can be used either on an emulator or an unlocked Windows Mobile device.

A lot of articles have been written about database concurrency conflict detection and the various ways of handling them.Unfortunately most of these articles, and accompanying solutions, have one major flaw in that they focus on the technical issues and database implementation instead of real-world data and how people use the data. In this article, I will try to show the difference between focusing on the database implementation and on the real-world data. I will show some possible approaches on how to solve these concurrency issues.