GL.net Group Meeting #10 - 06 November 2009

Summary

The MVC guru, Steven Sanderson, is coming to Gloucester to talk about .... yes, ASP.NET MVC.

Getting Started with ASP.NET MVC

Microsoft's new MVC-based web development framework has got the .NET world excited - but what's it like to use? What's wrong with classic ASP.NET, and how does MVC do better or worse?
In this session we build a small application, comparing the development experience with classic ASP.NET. See MVC architecture, clean URLs, domain-driven design (DDD), tight HTML, and simple ajax at work. We'll also make use of the new features coming soon in ASP.NET MVC v2, including strongly-typed UI templating and model validation.

Attacking and Defending an ASP.NET MVC Website

If you're developing for the web, you can't afford to ignore security. In this session we'll consider the attack vectors that apply to all web development platforms - not only ASP.NET MVC - including cross-site request forgery (CSRF), cross-site scripting (XSS), click hijacking, and several others.
After demonstrating each attack in operation, we'll see how to secure our ASP.NET MVC application against it. Plus, we'll consider one or two common security pitfalls that are specific to ASP.NET MVC itself.

Bio

Steven Sanderson is an independent software developer living and working in Bristol, UK. He's sometimes an author or a presenter, but is mainly a programmer with interests in web development, security, and agile principles and practises.
Steve recently wrote Pro ASP.NET MVC Framework (Apress), the best selling and top rated ASP.NET MVC book on Amazon. He's a member of ASPInsiders, and regularly blogs and releases open-source code at http://blog.stevensanderson.com/

 

 

Location

Symantec/MessageLabs
1240 Lansdowne Court
Gloucester Business Park, Gloucester, GL3 4AB

Agenda

6:00pm - Doors Open
6:30pm - Meeting Begins: Welcome and Grok Talk
7:00pm - Main Presentation - Part 1
7:50pm - Break
8:10pm - Main Presentation - Part 2
9:00pm - Presentation Ends. Retire to bar.

Location Details

How To Register

The event is distributed as a calendar appointment. Please accept of reject the invitation you received to mark your attendance. You can also see the group's calendar here. Alternatively please fill the booking form below.

It's very important for us to have list of delegates before meeting to be able to secure suitable room and provide enough refreshments.

Registration

Please authenticate before registration.