Archives
-
WS-I BSP 1.0 Sample Application
-
Unleashing the power of GAT+CAB
The two current raising stars, most known as the Guidance Automation Toolkit (GAT) and the Composite UI Applicaion Block (CAB) are finally in the public domain (tech preview and code drop 1 respectively).
-
Never Trust User Input: The ASP.NET ViewState case
This morning I came across an interesting post about user input validation (ASP.NET __VIEWSTATE crypto validation prone to replay attacks) and the popular ASP.NET viewstate artifact that many people use thinking their state information (Read: User Input data in transit) is secured by the ASP.NET infrastructure. I know that you may already validate “server-side” your sensitive input data against your “trusted” backends, nevertheless, you might take a look at the above article and this summary posted by Scott.