login      my ps      about      contact  



home instructor-led on-demand! screencasts blogs


Security Briefs » The book ships

The book ships

Security Briefs

Pluralsight Blogs

Syndication

Recent Posts

Tags

View more

Keith's books

Misc

Recent Articles

Archives

My copy arrived on Saturday.

I even managed to get our logo down there in the bottom right corner :-D

Posted Sep 20 2004, 11:22 AM by keith-brown
Filed under: ,

Comments

Robert Hurlbut wrote re: The book ships
on 09-20-2004 11:36 AM
Congratulations!
Geek Noise wrote Geek Notes 2004-09-20
on 09-21-2004 12:26 AM
Ingo Rammer wrote re: The book ships
on 09-21-2004 1:21 AM
Congrats! This is a definite must-read. -Ingo
Robert Hurlbut's .Net Blog wrote A must read book on Windows Security
on 09-21-2004 5:37 AM
Brian A. Randell wrote re: The book ships
on 09-21-2004 9:11 AM
Wahoo!

Congrats Keith!

Claudio Pacciarini wrote re: The book ships
on 09-21-2004 12:27 PM
Very interesting book, congratulations! Can't wait to my copy to arrive.

Cheers.
mikeb wrote re: The book ships
on 09-22-2004 10:59 AM
Keith -

My order is in (thanks for the bookpool pointer).

I do have one question: why is .NET stressed in the title when it really seems to be about Win32 security? Unless I'm missing something, there doesn't seem to be any discussion about CAS, which I would think to be the most important (and new to the Win32 programmer) aspect of .NET Framework security.

I look forward to any and all articles, books, or whatever you might be planning on Framework oriented security.

Thanks.
Keith Brown wrote re: The book ships
on 09-22-2004 12:46 PM
The focus of the book is on the role-based security in .NET - how .NET wraps existing Windows operating system security features.

There's already a really good book on CAS out there: .NET Framework Security, by LaMaccia, et. al.

Keith
John Bristowe wrote re: The book ships
on 09-23-2004 8:25 AM
Hooray! Navigating to amazon.ca now...

Congrats Worf... err, I mean Keith! ;-)
Service Station wrote Keith's book ships
on 09-23-2004 10:17 AM
Service Station wrote Tim Ewald heads to Mindreef
on 09-23-2004 10:25 AM
Greg Robinson wrote re: The book ships
on 09-24-2004 11:30 AM
When will it be avaialbe for 'us' to order? Bookpool and Amazon both say 'Yet to be published'
Keith Brown wrote re: The book ships
on 09-24-2004 11:33 AM
It takes one to two weeks for the booksellers to get it stocked.
Norman Diamond wrote re: The book ships
on 09-24-2004 4:03 PM
Even the publisher says it isn't published yet. Their estimate is Sept. 13, 2004 but the status is still "Not Yet Published".
http://www.aw-bc.com/catalog/academic/product/0,1144,0321228359,00.html

>> Unless I'm missing something, there doesn't
>> seem to be any discussion about CAS, which
>> I would think to be the most important (and
>> new to the Win32 programmer) aspect of .NET
>> Framework security.
>
> There's already a really good book on CAS
> out there: .NET Framework Security, by
> LaMaccia, et. al.

Hmm, sorry to ask this of a book author, but should I cancel my order for your book and buy that one instead? I ordered yours because of the kind of recommendations it had, but frankly this makes me wonder.
Keith Brown wrote re: The book ships
on 09-24-2004 4:33 PM
Well, I don't know what you were looking for, but you can read the entire contents of the book online - see if it suits your needs:

http://pluralsight.com/wiki/default.aspx/Keith.GuideBook.HomePage
Norman Diamond wrote re: The book ships
on 09-24-2004 8:55 PM
OK, the CAS book was available for a good price, along with an informative review saying why ONLY the CAS portion of that book should be believed. So I'm buying it AND yours.

Nonetheless Mike B's question surely deserves an answer. Why is .NET stressed in the title? For readers who are still new to .NET, we can read tons of stuff in either your wiki or your book and not be aware of what we're missing. If Visual Studio 2005 becomes sufficiently reliable then .NET will become very attractive to VC++ programmers. Surely both Win32 and .NET security are important.
Keith Brown wrote re: The book ships
on 09-25-2004 6:36 AM
Unlike years ago when I wrote my first security book, there are a whole bunch of books on security for .NET developers right now. Most of them focus on all the new stuff in the .NET Framework, and the few that say much about operating system security (what I term "Windows Security") often get it subtly or blatantly wrong.

There are even errors in the LaMacchia book in this regard. My goal was to provide a concise guide for .NET developers to operating system security features such as impersonation, logon sessions, etc.

And there is a weakness in the 1.1 framework class library: it does not wrap much at all of the functionality of windows security, so in many places I show how a .NET developer can access those features, and I talk about how things get better in v2.0.

So it's a guide to Windows security for .NET developers. Thus the title.
Ronny Ong wrote re: The book ships
on 09-29-2004 10:58 AM
The download link for the Code Samples is broken due to a trailing period inside the HREF.
Keith Brown wrote re: The book ships
on 09-29-2004 11:24 AM
Ahh thanks. Fixed. Silly wiki!
Don Box's Spoutlet wrote Keith's Security Book Shipped!
on 09-30-2004 2:43 AM
Nick Parker wrote .NET Security
on 09-30-2004 7:20 AM
paul.bz wrote It's shipped!
on 09-30-2004 8:47 AM
Nick Parker wrote .NET Security
on 10-01-2004 7:13 AM
Raj wrote re: The book ships
on 10-01-2004 9:36 AM
Already ordered!!!
tester wrote re: The book ships....Security?
on 10-04-2004 6:45 AM
Just wondering if something is broken since we are on the subject of security. Has anyone else has noticed that you can go view the book you have rights to edit the text?

Keith Brown wrote re: The book ships
on 10-04-2004 6:50 AM
By design. It's a wiki, which includes version control. If you edit a page and I don't like your edit, I roll it back with a single click.

The pros of allowing edits outweight the cons right now (the majority of the prose was entered into the wiki by community members, not by me!).

Remember threat modeling :-)
Il Blog di Paolo Pialorsi wrote Da comprare!
on 10-04-2004 5:20 PM
Robert Hurlbut's .Net Blog wrote Update on a must read book on Windows Security
on 10-10-2004 9:08 AM
Martin's WebLog wrote The .NET Developer's Guide to Windows Security
on 10-17-2004 3:27 PM
Nick Parker wrote .NET Security
on 01-25-2007 8:33 AM
.NET Security

Add a Comment

(required)  
(optional)
(required)  
Remember Me?


home instructor-led training online training blogs

781.749.9238 (East Coast) | 310.251.9901 (West Coast) | Pluralsight, LLC , 185 Lincoln St., Suite 305, Hingham, MA 02043-1741

Copyright © 2008 Pluralsight LLC. All rights reserved.

designed by nukeation