MCTS .NET Application Development Foundation - 70-536 – Objectives List Part 5 (Improving the security of .NET Framework applications by using the .NET Framework security features)

Implement code access security to improve the security of a .NET Framework application.

• Code Access Security
  
  • Introduction to Code Access Security
  • Code Access Security Basics
  • Using Libraries from Partially Trusted Code
  • Writing Secure Class Libraries
• System.Security Namespace
• SecurityManager Class
• CodeAccessPermission Class
• Creating Your Own Code Access Permissions
  
  • Designing a Permission
  • Implementing a Custom Permission
  • Adding Declarative Security Support
  • Demanding a Custom Permission
  • Updating Security Policy
  • Creating Other Custom Permissions
• Security Policy Model
  
  • Security Policy Levels
  • Named Permission Sets
  • Application Domain Hosts
• PermissionSet Class
• NamedPermissionSet Class
• Code Access Security Policy Tool (Caspol.exe)
• Standard Security interfaces
  
  • IEvidenceFactory Interface
  • IPermission Interface

Implement access control by using the System.Security.AccessControl classes.

• ACL Technology Overview
  
  • Technology Summary for ACLs
  • ACL Technology Architecture
  • ACL Technology Scenarios
  • ACL Propagation Rules
• System.Security.AccessControl Namespace
• DirectorySecurity Class
• FileSecurity Class
• FileSystemSecurity Class
• RegistrySecurity Class
• AccessRule Class
• AuthorizationRule Class
• AuthorizationRuleCollection Class
• CommonAce Class
• CommonAcl Class
• CompoundAce Class
• GenericAce Class
• GenericAcl Class
• AuditRule Class
• MutexSecurity Class
• ObjectSecurity Class
• SemaphoreSecurity Class

Implement a custom authentication scheme by using the System.Security.Authentication classes.

• SslProtocols Enumeration
• System.Security.Authentication Namespace

Encrypt, decrypt, and hash data by using the System.Security.Cryptography classes.

• Cryptographic Services
  
  • Cryptography Overview
  • .NET Framework Cryptography Model
  • Cryptographic Tasks
• Security How-to Topics - Encrypt, Decrypt and Hash data
• DES Class
• DESCryptoServiceProvider Class
• HashAlgorithm Class
• DSA Class
• DSACryptoServiceProvider Class
• SHA1 Class
• SHA1CryptoServiceProvider Class
• TripleDES Class
• TripleDESCryptoServiceProvider Class
• MD5 Class
• MD5CryptoServiceProvider Class
• RSA Class
• RSACryptoServiceProvider Class
• RandomNumberGenerator Class
• CryptoStream Class
• CryptoConfig Class
• RC2 Class
• RC2CryptoServiceProvider Class
• AsymmetricAlgorithm Class
• ProtectedData Class
• ProtectedMemory Class
• Rijndael Class
• RijndaelManaged Class
• RijndaelManagedTransform Class
• CspParameters Class
• CryptoAPITransform Class
• Hash-based Message Authentication Code (HMAC)
• HMACMD5 Class
• HMACRIPEMD160 Class
• HMACSHA1 Class
• HMACSHA256 Class
• HMACSHA384 Class
• HMACSHA512 Class

Control permissions for resources by using the System.Security.Permission classes.

• Security Permissions
  
  • Code Access Permissions
  • Identity Permissions
  • Role-Based Security Permissions
• Principal
• Authentication
• Authorization
• SecurityPermission Class
• PrincipalPermission Class
• FileIOPermission Class
• StrongNameIdentityPermission Class
• UIPermission Class
• UrlIdentityPermission Class
• PublisherIdentityPermission Class
• GacIdentityPermission Class
• FileDialogPermission Class
• DataProtectionPermission Class
• EnvironmentPermission Class
• IUnrestrictedPermission Interface
• RegistryPermission Class
• IsolatedStorageFilePermission Class
• KeyContainerPermission Class
• ReflectionPermission Class
• StorePermission Class
• SiteIdentityPermission Class
• ZoneIdentityPermission Class

Control code privileges by using System.Security.Policy classes.

• Privileges
• ApplicationSecurityInfo Class
• ApplicationSecurityManager Class
• ApplicationTrust Class
• ApplicationTrustCollection Class
• Evidence Class
• PermissionRequestEvidence Class
• CodeGroup Class
• FileCodeGroup Class
• FirstMatchCodeGroup Class
• NetCodeGroup Class
• UnionCodeGroup Class
• Condition classes
  
  • AllMembershipCondition Class
  • ApplicationDirectory Class
  • ApplicationDirectoryMembershipCondition class
  • GacInstalled Class
  • GacMembershipCondition Class
  • Hash Class
  • HashMembershipCondition Class
  • Publisher Class
  • PublisherMembershipCondition Class
  • Site Class
  • SiteMembershipCondition Class
  • StrongName Class
  • StrongNameMembershipCondition Class
  • Url Class
  • UrlMembershipConditon Class
  • Zone Class
  • ZoneMembershipCondition Class
• PolicyLevel Class
• PolicyStatement Class
• IApplicationTrustManager Interface
• IMembershipCondition Interface
• IIdentityPermissionFactory Interface

Access and modify identity information by using the System.Security.Principal classes.

• System.Security.Principal Namespace
• Role-Based Security
• GenericIdentity class
• GenericPrincipal class
• WindowsIdentity class
• WindowsPrincipal class
• NTAccount class
• SecurityIdentifier class
• IIdentity interface
• IPrincipal interface
• WindowsImpersonationContext class
• IdentityReference class
• IdentityReferenceCollection class