Threat Modeling Web Applications

Web applications are often attacked, and unless you are careful, your ASP.NET application might be hacked despite the defensive barriers built into the framework.

MSDN has a good article about how to find potential security threats in your application and how to solve them with a better architecture.

The article is part of the Microsoft Patterns & Practices Library. Every web developer should be aware of these threats.