New Security Features in ASP.NET—And How to Use Them

In the .NET platform, everything is “new.” This includes the implementation of methods previously available through other means, such as IIS and DCOM, and methods introduced in .NET. In the world of authenticating users to a resource, such as a Web site, Microsoft .NET provides four options, Basic, Windows, Forms-based and Passport.

For validating user authentication and authorization when it comes to code permissions, a.k.a. code access security, there is now the simple to implement method of impersonation. While this might not be late-breaking news, what is is the fact that now a user's principals can be changed by privileged code. Impersonation, in this case, means that through the Common ...

Get .NET Framework Security now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.