Just found out about this site about security: Hellosecureworld. Take a look at it. It's in Silverlight (always a good reason to check something out) and it has comics (another good reason). What are you waiting for: click the link!

Grz, Kris.

Just read that Scott Mitchel has started another series on ASP.NET articles. This time he'll be covering security in ASP.NET. Be sure to check it out: Security tutorials.

Grz, Kris.

To build software that meets your security objectives, you must integrate security activities into your software development lifecycle. This handbook captures and summarises the key security engineering activities that should be an integral part of your software development processes.

These security engineering activities have been developed by Microsoft patterns & practices to build on, refine and extend core lifecycle activities with a set of security-specific activities. These include identifying security objectives, applying design guidelines for security, threat modelling, security architecture and design reviews, security code reviews and security deployment reviews.

It's not a book that you would read but rather a security best practices checklist. Download the free eBook if you're interested.

Grz, Kris.

I'm already subscribed for that event and if you would like to come to you can go to this page: http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032340308&Culture=en-US.

Hope to see you there!

Grz, Kris.

Hi,

last saturday I already wrote about the new anti XSS library and I just found out there's a dedicated forum for all your question available. Take a look here: Anti-Cross Site Scripting Library.

Grz, Kris.

Microsoft recently release the new version of their Anti-Cross Site Scripting (XSS) Library, currently at version 1.5. You can download and find more information about it here. If you're concerned about security in ASP.NET give this library a try.

Grz, Kris.