Programming Windows Security

"Keith Brown lucidly explains the Win32 security architecture and how it pervades Windows NT and Windows 2000. He demystifies authentication, authorization, auditing, COM+ security, logon sessions, and much more." --George V. Reilly, IIS Performance Lead, Microsoft Windows security has often been considered a dry and unapproachable topic. For years, the main examples of programming security were simply exercises in ACL manipulation.Programming Windows Securityis a revelation providing developers with insight into the way Windows security really works. This book shows developers the essentials of security in Windows 2000, including coverage of Kerberos, SSL, job objects, the new ACL model, COM+ and IIS 5.0. Also included are highlights of the differences between security in Windows 2000 and in Windows NT 4.0. Programming Windows Securityis written by an experienced developer specifically for use by other developers. It focuses on the issues of most concern to developers today: the design and implementation of secure distributed systems using the networking infrastructure provided by Windows, the file server, the web server, RPC servers, and COM(+) servers. Topics covered include: COM(+) security, from the ground up IIS security How the file system redirector works and why developers should care The RPC security model Kerberos, NTLM, and SSL authentication protocols and SSPI Services and the Trusted Computing Base (TCB) Logon sessions and tokens Window stations, desktops, and user profiles The Windows 2000 ACL model, including the new model of inheritance Using private security descriptors to secure objects Accounts, groups, aliases, privileges, and passwords Comparison of three strategies for performing access control--impersonation, role-centric, and object-centric--and their impact on the design of a distributed application Programming Windows Securityprovides the most comprehensive coverage of COM(+) security available in one place, culled from the author's extensive experience in diagnosing COM security problems in the lab and via correspondence on the DCOM mailing list. 0201604426B04062001Brown, Keith is the author of 'Programming Windows Security' with ISBN 9780201604429 and ISBN 0201604426.