Secure User Account and Authentication Practices in ASP.NET and ASP.NET Core

This course will teach you how to add secure authentication practices to your ASP.NET websites, including proper establishing and storing of passwords, multi-factor authentication, password recovery, and proper authorization techniques..
Course info
Rating
(16)
Level
Intermediate
Updated
Oct 29, 2020
Duration
2h 15m
Table of contents
Course Overview
Implementing Secure Authentication
Improving Authentication Security
Additional Defense Against Authentication Attacks
Implementing Secure Authorization
Description
Course info
Rating
(16)
Level
Intermediate
Updated
Oct 29, 2020
Duration
2h 15m
Description

Getting authentication and authorization done right in your website can help keep your users and their data safe from attacks. While perfect security is arguably impossible to achieve, you’re going to see a wide variety of techniques to help you keep your site secure. In this course, Secure User Account and Authentication Practices in ASP.NET and ASP.NET Core, you’ll learn to create secure websites that use recommended practices around user account management and authentication and authorization. First, you’ll explore how to properly implement a user authentication and registration process - including password policies and password recovery. Next, you’ll discover how to add additional security through multi-factor authentication and the prevention of some common authentication-related attacks. Finally, you’ll learn how to add authorization to your website to prevent authenticated users from seeing or doing things that they should not be able to. When you’re finished with this course, you’ll have the skills and knowledge of secure authentication and user account practices needed to create websites that you and your customers can be confident in.

About the author
About the author

Full-stack developer, architect using the Microsoft stack and other key tools to create awesome solutions.

More from the author
Effective Logging in ASP.NET Core
Intermediate
2h 26m
Jul 29, 2020
More courses by Erik Dahl
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi everyone. My name is Erik Dahl, and welcome to my course, Secure User Account and Authentication Practices in ASP.NET and ASP.NET Core. I'm a principal architect at RealPage. Getting authentication and authorization done right in your website can help keep your users and their data safe from attacks. While perfect security is arguably impossible to achieve, we're going to present a wide variety of techniques to help you keep your site secure. Some of the major topics we'll cover include password validation policies, including validating against already‑compromised passwords, password reset procedures and good and bad ways of doing that, multi‑factor authentication and how it should be implemented, defending against various kinds of authentication‑related attacks like credential stuffing, password sprays, and invalidated redirects, and various techniques to ensure proper authorization throughout your site. All of this is going to be done with a custom user database, which will really increase your understanding of how identity in ASP.NET works. By the end of this course, you'll know lots of different techniques that you can adopt to improve the security of your website relative to authentication and authorization concerns. Before beginning the course, you should be familiar with ASP.NET or ASP.NET Core website development. I hope you'll join me on this journey to learn better authentication and authorization practices with the Secure User Account and Authentication Practices in ASP.NET and ASP.NET Core course, here at Pluralsight.