Defensible .NET
ASP.NET and the .NET framework have become a preferred foundation underlying enterprise applications. While Microsoft has prioritized integrating security into the ASP.NET framework, attacks at the application layer are dramatically increasing. How effective are the security controls built into the ASP.NET framework? Application architects must understand the limitations of the framework and ensure that code is secure. Focusing on the OWASP top ten, Jason Montgomery will explain the latest defensive techniques specific to the ASP.NET environment, and discuss the importance and challenges of building security into the organization’s software development lifecycle.
About the speaker
Jason Montgomery is Sr. Security Specialist at Active Technologies Group, Inc. (ATGi). He is a SANS instructor in .NET application security and co-author of the secure coding certification, GSSP.NET. Jason has spent the past five years guiding software security practices at the Department of Defense, and currently leads ATGi’s secure software development and assessment practice.
Location
The presentation will be on Tuesday, August 3rd, at 6:00 p.m, at ICC, 2500 Corporate Exchange Drive, Suite 310, Columbus, OH 43231, on the third floor. The meetings are always free, and we usually give away books and other door prizes.
