Thursday 20 October 2011

Microsoft All-In-One Code Framework (should the OWASP .NET community be involved?)

Anybody tried the Microsoft All-In-One Code Framework ?

It looks like a way to distribute sample apps (for example this ASP.NET AJAX web chat application ) and I wonder how much security thinking (and review) has occurred? 

If we are looking for a place to help .NET developers to write secured code, maybe this is a great place for us (OWASP) to be involved. 

What do you think?