As Web applications become more powerful and sophisticated, security becomes increasingly important. Not only do we need to protect our applications and sites from attack, we must also take measures to ensure the confidentiality and integrity of data. As part of the NET Framework, ASPNET provides a wealth of sophisticated security features, including mechanisms that enable us to implement authentication and authorization solutions, support for rotes and identities, a framework in which to implement our own custom authentication and authorization, integration with Microsoft's NET Passport, Code Access Security, and much more. In order to ensure the security of our applications, we must understand both the types of threats that an internet-exposed application is vulnerable to, and the wealth of tools, technologies and techniques that we can utilize in implementing a secure application. This book will guide you through the details of ASPNET security, from an investigation of general security issues, to detailed implementations of the more sophisticated ASPNET security features.