Azure & DevOps Podcast20 Helmi 2023

Christian Wenz: ASP .NET Core Security - Episode 233

Christian Wenz works as a consultant, trainer, and author with a focus on web technologies and is the author or co-author of over 100 computer books. He regularly contributes to various IT magazines and speaks at conferences around the globe. Christian holds a "Diplom" (the German equivalent of a master's degree) in Computer Sciences, and one in Business Informatics. In his day job, he is one of the founders of the web agency Arrabiata Solutions (http://www.arrabiata.com/) with offices in Munich, Germany, and in London, UK. He also frequently works with development teams to make their applications better performing, more secure, and more reliable.

Topics of Discussion:

[2:51] Has Christian really written over 100 computer books? Christian talks about the books and the high points of technology that he has worked in.

[7:16] What is the OWASP (Open Web Application Security Project) Top 10 list?

[10:33] You always have to be aware that something may go wrong, and have a security mindset.

[12:05] Again and again, make sure that you understand the fundamentals of web app security, because eventually, you will make a mistake in your code.

[12:30] What is insecure design?

[13:43] Christian talks about the enumeration scheme CWE: common weakness enumeration, which basically assigns a number to each risk or attack.

[17:00] How should people be logging into their web sessions now with .NET7?

[18:31] The major mistake you can make these days is to write your own authentication mechanism.

[23:57] What is Christian's favorite mechanism today for securing HTTP web services?

[31:05] What are some of the tools Christian always reaches for, and how do we differentiate between static auditing and dynamically auditing an application?

Mentioned in this Episode:

Clear Measure Way

Architect Forum

Software Engineer Forum

Programming with Palermo — New Video Podcast! Email us programming@palermo.network

Clear Measure, Inc. (Sponsor)

.NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon!

Jeffrey Palermo's Twitter — Follow to stay informed about future events!

Architect Tips — Video podcast!

Azure DevOps

Christian Microsoft Profile

ASP.NET Core Security

Christian's Books on Amazon

Configuring Code Scanning for a Repository

Want to Learn More?

Visit AzureDevOps.Show for show notes and additional episodes.

Kokeile Premiumia

Nauti 14 päivää ilmaiseksi

Tilaa Premium

Jaksot(386)

Jeffrey Palermo on Software Careers - Episode 178

This episode gives the listener a rundown of the categories of work that are required in every software project. Jeffrey discusses a few of the many different types of careers in the software industry...

31 Tammi 202220min

Bryan Costanich on .NET 6 IoT - Episode 177

This week, Jeffrey welcomes Bryan Costanich, Founder of Wilderness Labs and former VP of Xamarin. Bryan talks with us about the state of .NET, the advantages and disadvantages of moving into the embed...

24 Tammi 202244min

Jeff Fritz on The state of .NET - Episode 176

This week, Jeffrey welcomes Jeff Fritz to the show. As an experienced developer, technical educator, and PM on the .NET team at Microsoft, Jeff also founded the Live Coders team on Twitch where he reg...

17 Tammi 202240min

Buck Woody on Data Science - Episode 175

This week, Jeffrey is joined by Buck Woody, Applied Data Scientist working on the Azure Data Services team at Microsoft. Buck has over 39 years of professional and practical experience in computer tec...

10 Tammi 202240min

Jimmy Engström on Blazor - Episode 174

This week, Jeffrey is joined by Jimmy Engström, a Senior Developer, author, and speaker. Since he was 7 years old and got his first computer, Jimmy has been on the cutting edge of technology, always...

3 Tammi 202236min

Aaron Stannard on the Actor Model with Akka.NET | Part 2 - Episode 173

In this episode, Jeffrey is rejoined by Aaron Stannard for the second half of their two part interview! Be sure to turn into last week's episode, "Aaron Stannard on the Actor Model with Akka.NET | Par...

27 Joulu 202138min

Aaron Stannard on the Actor Model with Akka.NET | Part 1 - Episode 172

In this episode, Jeffrey is joined by a deeply fascinating guest, Aaron Stannard! Aaron is the founder and CEO of Petabridge and Sdkbin, building open source tools for .NET developers to build concurr...

20 Joulu 202124min

Jessica Engström on User Experience - Episode 171

This week, Jessica Engström joins the podcast to speak about user experience. Jessica is an international speaker, teacher, podcaster, mentor, geek, and the CEO of her own company. One of her passio...

13 Joulu 202134min

Kaikki yhdessä sovelluksessa

Kuuntele kaikki suosikkipodcastisi ja -äänikirjasi yhdessä paikassa.

Sinulle valikoitua sisältöä

Podme-sovelluksessa kokoat suosikkisi helposti omaan kirjastoosi. Saat meiltä myös kuuntelusuosituksia!

Jatka kuuntelua koska tahansa

Voit jatkaa siitä mihin jäit, myös offline-tilassa.

Premium

9,99 €/kk

Kaikki premium-podcastit
Ei mainoksia
Ei sitoutumista, peruuta koska tahansa

Aloita 14 päivän kokeilu

Premium

13,99 €/kk

Kaikki premium-podcastit
Ei mainoksia
Ei sitoutumista, peruuta koska tahansa
Yksi lisäkäyttäjä

Kokeile 14 päivää maksutta

Suosittua kategoriassa Politiikka ja uutiset

rss-tasta-on-kyse-ivan-puopolo-verkkouutiset

rss-polikulaari-humanisti-vastaa-ja-muut-ts-podcastit

Tarinat ja äänet, joita rakastat kuunnella

Kuuntele kaikki suosikkipodcastisi ja -äänikirjasi

Lue lisää