While Security considerations are fundamental to application design and should not be left for last, pedagogically it is easier to talk about security once the .NET application model, ASP.NET, and Web Services have already been introduced. This chapter introduces to you the fundamentals of .NET security. ^[1]

Security prevents a user or code from doing things it should not be allowed to do. Traditionally, security has focused on restricting user actions. .NET allows restrictions to be placed on executing code. For example, you can prevent certain sections of code from accessing certain files. This is particularly useful when you have public Web sites or services where it is impractical to create user accounts, and lock down ...