Secure Programming for the Enterprise in .NET Framework / .NET Core
Not encrypting your data is a risky move and just relying on the hope that you won't get hacked and compromised is not a winning strategy. As a software developer, you have a duty to your employer to secure and protect their data. In this workshop, you will learn how to use the .NET Framework / .NET Standard 2* (> .NET Core 3) to protect your data to satisfy confidentiality, integrity, non-repudiation, and authentication.
In this one-day workshop, we will take a practical approach to adding cryptographic security to your applications.
Cryptography is generally regarded as being very hard to implement, but in this workshop, we will show you that it is in fact very easy to do when you are given the right direction.
We will cover the following subjects:
* Generating cryptographically secure random numbers
* Hashing of data
* Authenticated hashing of data
* The best way to store passwords
* Storing passwords with Password-Based Key Derivation Functions
* Symmetric Encryption with AES
* Asymmetric Encryption with RSA
* Digital Signatures
* Hybrid Encryption
* Using RSA and AES together to create a powerful and flexible encryption scheme
* Hybrid Encryption with Authenticated Hashing for Integrity
* Digitally signing Hybrid Encryption Data
Stephen is also an experienced software developer with a focus on .NET technologies and security for back end enterprise systems. He is also a Pluralsight author, blogger at www.stephenhaunts.com and international conference speaker, speaking at events like NDC London, NDC Oslo, Techorama and SDD Conf. He also co runs a user group called Derbyshire Dot Net.