Dec. 3, 2008, 5:45 a.m.
posted by fractal
IntroductionThe .NET Framework includes a comprehensive set of security tools, including both low-level classes for managing security and an overall framework for applying these tools to particular applications. The tools for managing security include code access security and role-based security. Code access security enables you to control what code can execute on a particular computer, and what that code can do. Role-based security enables you to control the actions that particular users can take. In this chapter, you'll learn about many aspects of .NET security. I'll start with the mechanics of code access security, and then discuss role-based security. The latter includes both authentication (determining who is trying to run code) and authorization (determining what this user can do). Finally, I'll give you some guidelines on applying these tools to Web services, remoting applications, Windows Services and Enterprise Services components. |
- Comment