ASP.NET Core: Security

Explore techniques for building secure ASP.NET Core applications and protecting them from common attacks.

Introduction

• Secure your .NET Core apps
• What you should know

1. Common Vulnerabilities in Apps

• Common security vulnerabilities
• Injection attack
• File upload attack
• Authentication attack
• XSS and CSRF attack
• CORS attack

2. Securing .NET Web Applications with Authentication

• What is authentication?
• Identity on ASP.NET Core
• Simple authentication with [Authorize] attribute
• Cookie-based authentication
• Social media provider authentication
• Email account verification
• API-key authentication
• Token-based authentication

3. Securing .NET Web API Applications with Authorization

• What is authorization?
• Simple role-based authorization
• Claims-based authorization
• Resource-based authorization

Conclusion

• Where to go next?