Azure & DevOps Podcast20 Helmi 2023

Christian Wenz: ASP .NET Core Security - Episode 233

Christian Wenz works as a consultant, trainer, and author with a focus on web technologies and is the author or co-author of over 100 computer books. He regularly contributes to various IT magazines and speaks at conferences around the globe. Christian holds a "Diplom" (the German equivalent of a master's degree) in Computer Sciences, and one in Business Informatics. In his day job, he is one of the founders of the web agency Arrabiata Solutions (http://www.arrabiata.com/) with offices in Munich, Germany, and in London, UK. He also frequently works with development teams to make their applications better performing, more secure, and more reliable.

Topics of Discussion:

[2:51] Has Christian really written over 100 computer books? Christian talks about the books and the high points of technology that he has worked in.

[7:16] What is the OWASP (Open Web Application Security Project) Top 10 list?

[10:33] You always have to be aware that something may go wrong, and have a security mindset.

[12:05] Again and again, make sure that you understand the fundamentals of web app security, because eventually, you will make a mistake in your code.

[12:30] What is insecure design?

[13:43] Christian talks about the enumeration scheme CWE: common weakness enumeration, which basically assigns a number to each risk or attack.

[17:00] How should people be logging into their web sessions now with .NET7?

[18:31] The major mistake you can make these days is to write your own authentication mechanism.

[23:57] What is Christian's favorite mechanism today for securing HTTP web services?

[31:05] What are some of the tools Christian always reaches for, and how do we differentiate between static auditing and dynamically auditing an application?

Mentioned in this Episode:

Clear Measure Way

Architect Forum

Software Engineer Forum

Programming with Palermo — New Video Podcast! Email us programming@palermo.network

Clear Measure, Inc. (Sponsor)

.NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon!

Jeffrey Palermo's Twitter — Follow to stay informed about future events!

Architect Tips — Video podcast!

Azure DevOps

Christian Microsoft Profile

ASP.NET Core Security

Christian's Books on Amazon

Configuring Code Scanning for a Repository

Want to Learn More?

Visit AzureDevOps.Show for show notes and additional episodes.

Kokeile Premiumia

Nauti 14 päivää ilmaiseksi

Tilaa Premium

Jaksot(386)

A Special Group Presentation on Blazor Architecture - Episode 138

Today on The Azure DevOps Podcast, Jeffrey Palermo is sharing an exclusive presentation on Blazor Architecture Patterns. Blazor is one of the new frameworks that has a lot to offer and is bringing man...

26 Huhti 20211h 9min

Kendall Roden on Microsoft's Cloud Native Global Black Belt Team - Episode 137

This week Jeffrey is joined by another podcast host! Kendall Roden is a Senior Cloud Native Technical Specialist on the Global Black Belt team at Microsoft and a co-host of the popular show, The Azure...

19 Huhti 202138min

Paul Yuknewicz on Azure Development - Episode 136

This week Jeffrey is speaking with Paul Yuknewicz! Paul is a Principal GPM on the Azure Dev Experience team and has had a rich, 20-year career with Microsoft. He first started out as a Program Manager...

12 Huhti 202126min

Ted Neward on Development Leadership - Episode 135

This week Jeffrey is joined by a fantastic return guest, Ted Neward! Ted is the Director of Technology Culture at Quicken Loans (where he has held several previous positions at). He is a self-describe...

5 Huhti 202144min

Sudhanva Huruli on Azure Sphere - Episode 134

Today, Jeffrey Palermo is joined by return guest, Sudhanva Huruli! Last time Sudhanva was on the podcast he was a Program Manager at Microsoft and a maintainer on the Open Application Model. Since the...

29 Maalis 202132min

Richard Campbell on the History of .NET - Episode 133

In this episode, Jeffrey and Richard are jumping into part-two of their two-part conversation! If you haven't caught the previous episode, "Richard Campbell on the Humanitarian Toolbox — Episode 132,"...

22 Maalis 202145min

Richard Campbell on the Humanitarian Toolbox - Episode 132

Jeffrey Palermo is joined by his good friend and return guest this episode — Richard Campbell! Richard is an entrepreneur, advisor, and rabid podcaster. He's a Microsoft regional director, the co-host...

15 Maalis 202122min

Rob Richardson on Database DevOps - Episode 131

This week Jeffrey is joined by another fantastic return guest — Rob Richardson! Rob is a software craftsman that is building web properties in ASP.NET, Node, Angular, and Vue. He's a software develope...

8 Maalis 202135min

Kaikki yhdessä sovelluksessa

Kuuntele kaikki suosikkipodcastisi ja -äänikirjasi yhdessä paikassa.

Sinulle valikoitua sisältöä

Podme-sovelluksessa kokoat suosikkisi helposti omaan kirjastoosi. Saat meiltä myös kuuntelusuosituksia!

Jatka kuuntelua koska tahansa

Voit jatkaa siitä mihin jäit, myös offline-tilassa.

Premium

9,99 €/kk

Kaikki premium-podcastit
Ei mainoksia
Ei sitoutumista, peruuta koska tahansa

Aloita 14 päivän kokeilu

Premium

13,99 €/kk

Kaikki premium-podcastit
Ei mainoksia
Ei sitoutumista, peruuta koska tahansa
Yksi lisäkäyttäjä

Kokeile 14 päivää maksutta

Suosittua kategoriassa Politiikka ja uutiset

rss-tasta-on-kyse-ivan-puopolo-verkkouutiset

Tarinat ja äänet, joita rakastat kuunnella

Kuuntele kaikki suosikkipodcastisi ja -äänikirjasi

Lue lisää