.NET Core Security Options

• ASP.NET Identity
• Cookie Authentication
• Razor Pages Authorization Conventions
• Windows Authentication
• Role-Based Authorization
• Claim-Based Authorization
• Policy-Based Authorization
• Resource-Based Authorization
• Selecting the Authorization Scheme
• Enforce HTTPS
• Secret Manager

Common Security Threats

• Cross-Site Request Forgery (XSRF/CSRF)
• Open Redirect Attacks
• Cross-Site Scripting (XSS)
• Same-Origin Policy & Cross-Origin Requests (CORS)

Data Protection Strategy

ASP.NET Core Data Protection

WIF