Dino Esposito, Wintellect
Dino Esposito is a trainer and consultant based in Rome, Italy. Member of the Wintellect team, Dino specializes in ASP.NET and ADO.NET and spends most of his time teaching and consulting across Europe and the United States. In particular, Dino manages the ADO.NET courseware for Wintellect (http://www.wintellect.com).
Prolific author, Dino writes the "Cutting Edge" column for MSDN Magazine and contributes to the Microsoft's ASP.NET and Longhorn DevCenters and several other magazines. Every month asp.netPRO Magazine, Windows Developer's Journal, and CoDe Magazine have Dino's articles covering topics ranging from Web development to data access and from XML to Web services programming, all rigorously done using the .NET Framework. Dino wrote numerous books including "Programming Microsoft ASP.NET" (Microsoft Press, 2003), sort of official annotated programmer's reference for ASP.NET development, and "Applied XML Programming with the .NET Framework", always from Microsoft Press (2002). The most recent book is "Introducing ASP.NET 2.0", Microsoft Press 2004. When not writing or teaching, Dino loves speaking at industry events worldwide such as Microsoft TechEd, DevConnections and WinDev.
Presentation: "Best Practices for Securing ASP.NET Applications"
Track: .NET Best Practices
Time: Monday 10:15 - 10:45
Abstract: The best way to understand how attacks against Web sites work is to see them demonstrated live and in person. This demo-laden session focuses on understanding the common threats that all Web applications face. Topics include types of threats; demos of common attacks such as SQL injection, field tampering, and cross-site scripting; and identifying vulnerabilities using threat modelling techniques.
Presentation: "Best Practices for ASP.NET Performance"
Track: .NET Best Practices
Time: Monday 11:00 - 12:00
Abstract: To write applications that perform well, it is important to maintain a balance of various metrics such as execution time, response time, throughput. No single measurement can tell how your application will behave under different circumstances, but several measurements taken together can show how well your application is performing. To improve performance, you can do a number of things, most of which revolve around disabling unnecessary system and runtime features. A bunch of other tricks relate to make certain things happen faster. This session will provide a list of dos and don'ts to make applications perform at more than acceptable levels.
Tutorial: "Crash-course in ASP.NET Control Development (full day)"
Time: Sunday 09:00 - 12:00, 13:00 - 16:00
So you want to build effective custom controls for use with ASP.NET pages, right? It's easy once you know everything (repeat, everything) or more about the control's lifecycle and are familiar with the nuts and bolts of the rendering machinery. In this talk, you'll learn how to override methods and properties, fire events, build the control's tree effectively, and compose multiple controls together. The concepts will be developed along the lines of a real-world example-building a data-bound BulletedList control applying all the Microsoft's best practices for ASP.NET controls.
Prerequisites: Bring your laptop with VS2003, IIS and SQL Server 2000 is fine. SQL Server is not strictly required but makes things easier.