Azure & DevOps Podcast20 Helmi 2023

Christian Wenz: ASP .NET Core Security - Episode 233

Christian Wenz works as a consultant, trainer, and author with a focus on web technologies and is the author or co-author of over 100 computer books. He regularly contributes to various IT magazines and speaks at conferences around the globe. Christian holds a "Diplom" (the German equivalent of a master's degree) in Computer Sciences, and one in Business Informatics. In his day job, he is one of the founders of the web agency Arrabiata Solutions (http://www.arrabiata.com/) with offices in Munich, Germany, and in London, UK. He also frequently works with development teams to make their applications better performing, more secure, and more reliable.

Topics of Discussion:

[2:51] Has Christian really written over 100 computer books? Christian talks about the books and the high points of technology that he has worked in.

[7:16] What is the OWASP (Open Web Application Security Project) Top 10 list?

[10:33] You always have to be aware that something may go wrong, and have a security mindset.

[12:05] Again and again, make sure that you understand the fundamentals of web app security, because eventually, you will make a mistake in your code.

[12:30] What is insecure design?

[13:43] Christian talks about the enumeration scheme CWE: common weakness enumeration, which basically assigns a number to each risk or attack.

[17:00] How should people be logging into their web sessions now with .NET7?

[18:31] The major mistake you can make these days is to write your own authentication mechanism.

[23:57] What is Christian's favorite mechanism today for securing HTTP web services?

[31:05] What are some of the tools Christian always reaches for, and how do we differentiate between static auditing and dynamically auditing an application?

Mentioned in this Episode:

Clear Measure Way

Architect Forum

Software Engineer Forum

Programming with Palermo — New Video Podcast! Email us programming@palermo.network

Clear Measure, Inc. (Sponsor)

.NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon!

Jeffrey Palermo's Twitter — Follow to stay informed about future events!

Architect Tips — Video podcast!

Azure DevOps

Christian Microsoft Profile

ASP.NET Core Security

Christian's Books on Amazon

Configuring Code Scanning for a Repository

Want to Learn More?

Visit AzureDevOps.Show for show notes and additional episodes.

Kokeile Premiumia

Nauti 14 päivää ilmaiseksi

Tilaa Premium

Jaksot(386)

Arthur Vickers on Entity Framework in .NET 6 - Episode 170

This week, Jeffrey is joined by Arthur Vickers, an Engineering Manager on the Entity Framework team at Microsoft. With Microsoft only just recently releasing .NET 6 and Entity Framework Core 6.0, it...

6 Joulu 202138min

Egil Hansen on Blazor Testing with bUnit - Episode 169

This week, Jeffrey is joined by Egil Hansen; a Principal Developer at Delegate, as well as a Microsoft MVP and a .NET Foundation member. Egil has a strong focus on creating maintainable software and l...

29 Marras 202133min

Michael Washington on Blazor in .NET 6 - Episode 168

This week, Michael Washington is once again joining the podcast to discuss all things Blazor! He previously joined the podcast on episode 88, where he discussed the state of Blazor back in May 2020. ...

22 Marras 202134min

James Shore on the Art of Agile Development - Episode 167

Today, James Shore joins The Azure DevOps Podcast! James teaches, writes, and consults on Agile software development. He is co-author of the classic Agile how-to guide, The Art of Agile Development, a...

15 Marras 202141min

Eilon Lipton on Blazor Desktop - Episode 166

This week, Eilon Lipton is joining the podcast! Eilon is a Principal Software Engineer at Microsoft. Eilon has been entrenched in the .NET world since it publicly came out. He started out as an intern...

8 Marras 202150min

John Miller on Microsoft Teams Apps with Blazor - Episode 165

This week, Jeffrey is joined by John Miller to discuss Microsoft Teams Apps with Blazor. John Miller is a Senior Program Manager at Microsoft. Lately, he has been working on the MS Teams toolkit to ...

1 Marras 202129min

Mads Torgersen on C# 10 and .NET 6 - Episode 164

Joining Jeffrey today is return guest, Mads Torgersen! Mads is the Lead Designer of the C# language and has been at Microsoft for 16 years. Prior to this, Mads was a professor and contributed to a lan...

25 Loka 202144min

Dan Patrick on Securing Azure Deployment - Episode 163

This week, Jeffrey Palermo is joined by Dan Patrick, the Chief Infrastructure Architect for Solliance. Dan leads the DevOps and Infrastructure practice focusing on accelerating the customer's velocity...

18 Loka 202145min

Kaikki yhdessä sovelluksessa

Kuuntele kaikki suosikkipodcastisi ja -äänikirjasi yhdessä paikassa.

Sinulle valikoitua sisältöä

Podme-sovelluksessa kokoat suosikkisi helposti omaan kirjastoosi. Saat meiltä myös kuuntelusuosituksia!

Jatka kuuntelua koska tahansa

Voit jatkaa siitä mihin jäit, myös offline-tilassa.

Premium

9,99 €/kk

Kaikki premium-podcastit
Ei mainoksia
Ei sitoutumista, peruuta koska tahansa

Aloita 14 päivän kokeilu

Premium

13,99 €/kk

Kaikki premium-podcastit
Ei mainoksia
Ei sitoutumista, peruuta koska tahansa
Yksi lisäkäyttäjä

Kokeile 14 päivää maksutta

Suosittua kategoriassa Politiikka ja uutiset

rss-tasta-on-kyse-ivan-puopolo-verkkouutiset

rss-polikulaari-humanisti-vastaa-ja-muut-ts-podcastit

Tarinat ja äänet, joita rakastat kuunnella

Kuuntele kaikki suosikkipodcastisi ja -äänikirjasi

Lue lisää