.NET Framework 2.0 Security Inspection Questions

From Guidance Share

Jump to: navigation, search

- J.D. Meier, Alex Mackman, Blaine Wastell, Prashant Bansode, Jason Taylor, Rudolph Araujo



Use security inspection questions for performing code inspections. Questions put you in the right state of mind when analyzing the code. The questions are organized by categories that are both actionable and tend to contain security issues. You can also chunk up your security inspection by the categories for iterative or incremental approaches.

What's New in 2.0

SQL Injection

Cross-Site Scripting

Input and Data Validation

Code Access Security

Exception Management


Sensitive Data


Unsafe Code

Potentially Dangerous Unmanaged APIs

Auditing and Logging


Related Items

Personal tools