Developing Secure ASP.NET Applications
On December 18th, I conducted an MSDN session for developing secure ASP.NET applications. As much as I'm a SQL Server MVP, the sessions on .NET give me great opportunities to study other technologies and talking about them is great! This session focused on some of the best practices that people can follow to develop secure ASP.NET sessions and the content is largely based on the articles that Microsoft released. Here are the 2 links that contain a whole lot of information on which the presentation was based.
After reading these two papers (more than 600 pages of text), I realized how important security is and what the various techniques are for developing secure applications. The session lasted for more than 3 hours and I was asked so many questions on security that it was refreshing to see people start thinking about why security is important. Most of the time, I've observed people just developing applications and hoping that the infrastructure would take care of security, but preparing for this session was an eye opener in terms of how to plan for security right from design.
I hope to do more such sessions in the future.