Understanding ASP.NET Core Security

This course has been updated to explain security in ASP.NET Core 2. ASP.NET Core security shouldn't be an afterthought when designing an application. Learn how to mitigate common attacks and implement encryption, authentication, and authorization.
Course info
Level
Intermediate
Updated
Mar 8, 2017
Duration
3h 6m
Table of contents
Course Overview
Protecting Your Application Against Common Attacks
Understanding the Data Protection API and the Secret Manager
Implementing Authentication with ASP.NET Core Identity
Centralized Authentication with a Token Service
Applying Authorization
Description
Course info
Level
Intermediate
Updated
Mar 8, 2017
Duration
3h 6m
Description

Learn how to make your ASP.NET Core app secure in this course. First you'll learn about common attacks and how to mitigate them with NWebSec. You'll learn the ins and outs of the new encryption API and how to protect secrets with the secret manager. Authentication is covered by explaining ASP.NET Core Identity as well as implementing a token service with IdentityServer. Finally you'll see that ASP.NET Core's authorization system is now policy based.

About the author
About the author

Roland is a Microsoft MVP enjoying a constant curiosity around new techniques in software development. His focus is on all things .Net and browser technologies.

More from the author
Understanding ASP.NET Core 3x
Beginner
2h 56m
Aug 20, 2019
Getting Started with ASP.NET SignalR
Beginner
1h 2m
May 16, 2019
Building GraphQL APIs with ASP.NET Core
Advanced
1h 23m
Jan 17, 2019
More courses by Roland Guijt
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi everyone, my name is Roland Guijt and welcome to my course Understanding ASP. NET Core Security. I'm an MVP independent software architect, developer and trader based in the Netherlands. Security of web applications is now more important than ever. In this course you'll learn the aspects of ASP. NET Core security and how to efficiently integrate them in your projects. Some of the major topics I will cover include protecting your app against common attacks, such as cross site scripting and click checking, encrypting sensitive data with a brand new data protection API, authenticating users for a single application but also in a centralized way with the token service, how to write access rules to limit access to your application using ASP. NET Core's new authorization system. By the end of this course you will be ready to secure your application by efficiently applying threat protection, encryption, authentication and authorization. Before beginning the course you should be familiar with ASP. NET Core. Get up to speed with all the goodness that is in ASP. NET Core security here at Pluralsight.