Security Boulevard

Authenticate Users with WS-Federation in Web Applications

Master WS-Federation for hybrid identity. Learn how to bridge legacy ASP.NET apps with modern Entra ID and OIDC using the .NET 10 Passive Requestor Profile.
RCR Wireless News

Telefónica on making Open Gateway APIs agent-ready

Earlier this month, Telefónica and Nokia announced a collaboration to test how AI software agents could support the use of network APIs, as part of the GSMA Open Gateway initiative.
Bleeping Computer

Microsoft fixes highest-severity ASP.NET Core flaw ever

Earlier this week, Microsoft patched a vulnerability that was flagged with the "highest ever" severity rating received by an ASP.NET Core security flaw. This HTTP request smuggling bug (CVE-2025-55315 ...
SecurityWeek

‘Highest Ever’ Severity Score Assigned by Microsoft to ASP.NET Core Vulnerability

CVE-2025-55315 is an HTTP request smuggling bug leading to information leaks, file content tampering, and server crashes. Microsoft’s October Patch Tuesday updates addressed a critical-severity ...
InfoWorld

How to use the IServiceProvider interface in ASP.NET Core

Take advantage of the IServiceProvider interface to resolve service dependencies in ASP.NET Core and improve the maintainability and testability of your applications. One of the most essential ...
The Hacker News

Microsoft Identifies 3,000 Leaked ASP.NET Keys Enabling Code Injection Attacks

Microsoft is warning of an insecure practice wherein software developers are incorporating publicly disclosed ASP.NET machine keys from publicly accessible resources, thereby putting their ...
Visual Studio Magazine

Versioning and Documenting ASP.NET Core Services

Building an API with ASP.NET Core is only half the job. If your API is going to live more than one release cycle, you're going to need to version it. If you have other people building clients for it, ...