MSDN Webcast Review: How to Perform a Security Review

This morning I sat in the MSDN LiveMeeting Webcast "How to Perform a Security Review". It wasn't very technical, but I have to say it wasn't all that bad. Not much new here for me, but it was a refreshing to hear others talk about it. The presenter knew what he was talking about, and I think that makes all the difference when presenting such a topic. In the next few days the presentation will be online on-demand over at http://www.microsoft.com/seminar/events/webcasts/ondemand.mspx, and you can check it out for yourself.

In the meantime, I kept a copy of the power point slides of the presentation, which you can get here. It will do a better job to explain the presentation that I could ever do. You won't see the demos, but you can watch that later.

During one point in one of the demos they were using FxCop and I noticed they had a MsInternalSecurityRules.dll, which isn't part of the FxCop distro for version 1.23. Why not? Whats so secret for Microsoft security that we shouldn't know? Anyone in the FxCop team want to respond to that?

Update: Microsoft got back to me about MsInternalSecurityRules.dll. Apparently they retired the DLL and moved the rules into the general FxCop distribution files.