This documentation is archived and is not being maintained.

Resources for Creating Secure Applications 

Security considerations should be included in all aspects of application creation, from design to deployment. The following sections include resources for learning more about secure coding practices.

Product Documentation

The following topics provide information about coding secure applications.

Topic Description

Security in Native and .NET Framework Code

Provides information on security topics that span the life of an application, from coding to deployment, as well as general security topics.

Security Best Practices for C++

Provides information on security features and practices available when working in Visual C++.

Security and Visual Basic Development

Provides information on the top three security concerns when working in Visual Basic: privileges, Web applications, and Visual Studio setup.

Security (C# Programming Guide)

Provides a list of C# specific security recommendations.

Security Semantics for Applications Written in Visual J#

Provides information about using vjslib to allow Visual J# applications to run within the scope of .NET partial trust semantics.

Securing ADO.NET Applications

Provides information on securing the parts of your application that use ADO.NET.

ASP.NET Web Application Security

Provides information on how to control access to date in Web applications using authentication.

ASP.NET Web Site Security

Provides information on how to protect Web sites from security attacks.

Security in Device Projects

Provides information on security issues for smart device development.

Online Resources

The following sources can be accessed if you have an active Internet connection.


Article Description

"Info: MSDE Security and Authentication" (Knowledge Base article 325022) at;en-us;325022

Provides an overview of Microsoft Desktop Engine (MSDE) Security and Authentication and some helpful tips about how to make your data more secure.

"Managing Security" at

Provides information about the security tools built into Microsoft SQL Server, as well as tips about planning for security.

"Writing More Secure IIS Applications" at

Describes programming tasks that can be used to improve the security of an IIS application, such as validating user input and constructing database query strings that protect against script injection.

Other sources