This articles was originally at wiki.asp.net but has now been given a new home on CodeProject. Editing rights for this article has been set at Bronze or above, so please go in and edit and update this article to keep it fresh and relevant.
AJAX adds one more wrinkle to web security. I find that videos and demonstrations help me understand subtle topics like this.
- Security in ASP.NET AJAX Client Applications - In this webcast, we cover Microsoft ASP.NET AJAX client application security from every angle. We discuss the common security attacks your applications may encounter and how to protect against them.
- How Do I: Secure my Site using Membership and Roles? - Learn how to secure a web site using the new Membership and Roles features of ASP.NET 2.0. Topics include user registration, password recovery, and restricting access to content with roles.
From a series of Webcasts that Joe Stagner put together, this is a five part series on Ajax and Security. Long, but worth your time.