Here's a very good paper from Microsoft’s Security Manager for CE.NET. He drills down to particular features, and goes on to suggest specific techniques to write safe code (for example, do you know the six ANSI C/C++ instructions that should never be used?? Read on!).
Security Features in Windows CE .NET Marcus Ash and Mukkul Dasgupta Microsoft Corporation Originally published January, 2003
Security is becoming increasingly important in the world of smart, connected devices. This detailed technical whitepaper discusses the various security mechanisms and features that device manufacturers and developers can use to build Microsoft Windows CE .NET-based applications and devices with enhanced security. Topics covered include Windows CE .NET operating system security, cryptography, authentication, smart cards, and public key technologies. The whitepaper also discusses common security vulnerabilities and provide tips and best practices to help avoid these pitfalls.
Topics: Create a Trusted Environment Creating a signature Verifying a signature Signfile.exe Trusted APIs Object store security Database security Secure Your Communications Network Secure Your Wireless Network Use Authentication Use Credential Manager Use SSL to Enhance Secure Network Communication Encrypt Data Using CryptoAPI Best practices Use the Protected Store API Generate Random Data Using CryptGenRandom Isolate Sensitive Data in a Smart Card Practice Secure Coding Techniques