Contact us for your penetration testing needs 1-866-PLYNT-24    |   Contact Us   Plynt UK Website  
Click to get Security Testing Quote
Plynt Blog

Poll: Secure Coding Guidelines for .Net

by Roshen Chandran  | 16 Oct 2005 | Comments

We’re speaking on "Secure Coding Guidelines for .Net" at the next RSA Conference. This is a 1-hr session in the Developers track. My plan is to share 15 tips that .Net developers can use right away.

I’d like to invite a quick poll: What would you like given most emphasis in this session?

Interestingly, the theme of this year’s conference is Vedic Mathematics and Aryabhata, the ancient mathematcian sage. Aryabhata’s work laid the foundation for calculus and influenced Western mathematics for over 1000 years. Check out the conference site - the design is quite nice.


Plynt provides penetration testing and code review services to clients worldwide. If you are interested, please contact us for a quote. We’ll get back to you within one working day.
Add yours.closed for this post.

1. John Adams | 17 Oct 2005 7:50 AM
What would you like given most emphasis in this session?

The importance of whitelists to validate inputs and the classes available in .Net to implement white lists quickly.

2. Nimitt | 19 Oct 2005 4:14 PM

Do ensure that you include controls on the application trace. By enabling the application trace an admin can get access to all web form post... :)

Cheers,
nimitt(at)myrealbox.com

3. Shyam Selvadorai | 21 Oct 2005 6:58 PM

Congrats! The RSA conference is a good venue to advocate secure coding practices.

Top of the mind, here're a few areas you could give emphasis to:

  1. A uniform strategy for input validation (white lists are a good start)
  2. The importance of "failing safely"
  3. Using Prepared Statements to form SQL queries
  4. The choices for Code Obfuscation
  5. Using standard crypto libraries and the problems of "custom" crypto algorithms