Christian Wenz: ASP .NET Core Security - Episode 233
Azure & DevOps Podcast20 Helmi 2023

Christian Wenz: ASP .NET Core Security - Episode 233

Christian Wenz works as a consultant, trainer, and author with a focus on web technologies and is the author or co-author of over 100 computer books. He regularly contributes to various IT magazines and speaks at conferences around the globe. Christian holds a "Diplom" (the German equivalent of a master's degree) in Computer Sciences, and one in Business Informatics. In his day job, he is one of the founders of the web agency Arrabiata Solutions (http://www.arrabiata.com/) with offices in Munich, Germany, and in London, UK. He also frequently works with development teams to make their applications better performing, more secure, and more reliable.

Topics of Discussion:

[2:51] Has Christian really written over 100 computer books? Christian talks about the books and the high points of technology that he has worked in.

[7:16] What is the OWASP (Open Web Application Security Project) Top 10 list?

[10:33] You always have to be aware that something may go wrong, and have a security mindset.

[12:05] Again and again, make sure that you understand the fundamentals of web app security, because eventually, you will make a mistake in your code.

[12:30] What is insecure design?

[13:43] Christian talks about the enumeration scheme CWE: common weakness enumeration, which basically assigns a number to each risk or attack.

[17:00] How should people be logging into their web sessions now with .NET7?

[18:31] The major mistake you can make these days is to write your own authentication mechanism.

[23:57] What is Christian's favorite mechanism today for securing HTTP web services?

[31:05] What are some of the tools Christian always reaches for, and how do we differentiate between static auditing and dynamically auditing an application?

Mentioned in this Episode:

Clear Measure Way

Architect Forum

Software Engineer Forum

Programming with Palermo — New Video Podcast! Email us programming@palermo.network

Clear Measure, Inc. (Sponsor)

.NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon!

Jeffrey Palermo's Twitter — Follow to stay informed about future events!

Architect Tips — Video podcast!

Azure DevOps

Christian Microsoft Profile

ASP.NET Core Security

Christian's Books on Amazon

OWASP

Identity Server

Dependabot

Security Code Scan

Configuring Code Scanning for a Repository

Want to Learn More?

Visit AzureDevOps.Show for show notes and additional episodes.

Jaksot(386)

Dave McKinstry: The Evolution of DevOps - Episode 218

Dave McKinstry: The Evolution of DevOps - Episode 218

Dave McKinstry. Dave is a Director at GitHub helping to drive the FastTrack program. Prior to GitHub, he worked as a Program Manager with the Azure DevOps Services Community Team — connecting with par...

7 Marras 202233min

Nicholas Blumhardt: Structured Logging - Episode 217

Nicholas Blumhardt: Structured Logging - Episode 217

Nicholas Blumhardt is the Founder/CEO at @datalust_seq, core maintainer for #Serilog, founder of @AutofacIoC, and long-ago .NET PM at Microsoft. He resides in Brisbane, Australia. Topics of Discussi...

31 Loka 202236min

Isaac Abraham: Farmer for Azure Deployments - Episode 216

Isaac Abraham: Farmer for Azure Deployments - Episode 216

Isaac Abraham is an. NET MVP and a .NET developer since .NET 1.0 with an interest in cloud computing and distributed data problems. He is the author of Get Programming with F# and is the director of C...

24 Loka 202235min

Ted Neward: Getting the Most Out of In-Person Conferences - Episode 215

Ted Neward: Getting the Most Out of In-Person Conferences - Episode 215

Ted is a self-described geek who takes great pride and joy in making other geeks into bigger and better (and hopefully more highly rewarded) geeks. Having recently stepped into a management role, Ted ...

17 Loka 202248min

Alvin Ashcraft: Windows SDKs - Episode 214

Alvin Ashcraft: Windows SDKs - Episode 214

Alvin Ashcraft has over 27 years of programming experience in the healthcare, financial, and manufacturing industries. He is a Content Developer for Microsoft, creating docs for Windows developers on ...

10 Loka 202226min

Rob Richardson: Web Services in .NET 6 - Episode 213

Rob Richardson: Web Services in .NET 6 - Episode 213

Rob Richardson is a software craftsman who is building web properties in ASP.NET, Node, React, and Vue. He's a software developer, a community leader, a mentor, and the business owner of Richardson & ...

3 Loka 202229min

Mark Miller: The Science of Great UI in Software - Episode 212

Mark Miller: The Science of Great UI in Software - Episode 212

Today's guest is Mark Miller, a seven-year C# MVP with strong expertise in decoupled design, plug-in architectures, and great user interfaces. He is the Chief Architect of the IDE Tools division at De...

26 Syys 202245min

Scott Hunter: Microsoft's Azure & .NET Strategy- Episode 211

Scott Hunter: Microsoft's Azure & .NET Strategy- Episode 211

Topics of Discussion: [2:27] What are some things happening and that have happened at Microsoft that we may not be aware of? [7:25] Scott talks about some of the upcoming developments he is excited ab...

19 Syys 202239min

Suosittua kategoriassa Politiikka ja uutiset

aikalisa
tervo-halme
rss-ootsa-kuullut-tasta
ootsa-kuullut-tasta-2
politiikan-puskaradio
viisupodi
rss-vaalirankkurit-podcast
rss-podme-livebox
et-sa-noin-voi-sanoo-esittaa
otetaan-yhdet
linda-maria
io-techin-tekniikkapodcast
rss-tasta-on-kyse-ivan-puopolo-verkkouutiset
rikosmyytit
rss-polikulaari-humanisti-vastaa-ja-muut-ts-podcastit
viela-yksi-sivu
rss-uusi-juttu
rss-aika-ankkuri
rss-kaikki-uusiksi
rss-merja-mahkan-rahat