Azure & DevOps Podcast20 Feb 2023

Christian Wenz: ASP .NET Core Security - Episode 233

Christian Wenz works as a consultant, trainer, and author with a focus on web technologies and is the author or co-author of over 100 computer books. He regularly contributes to various IT magazines and speaks at conferences around the globe. Christian holds a "Diplom" (the German equivalent of a master's degree) in Computer Sciences, and one in Business Informatics. In his day job, he is one of the founders of the web agency Arrabiata Solutions (http://www.arrabiata.com/) with offices in Munich, Germany, and in London, UK. He also frequently works with development teams to make their applications better performing, more secure, and more reliable.

Topics of Discussion:

[2:51] Has Christian really written over 100 computer books? Christian talks about the books and the high points of technology that he has worked in.

[7:16] What is the OWASP (Open Web Application Security Project) Top 10 list?

[10:33] You always have to be aware that something may go wrong, and have a security mindset.

[12:05] Again and again, make sure that you understand the fundamentals of web app security, because eventually, you will make a mistake in your code.

[12:30] What is insecure design?

[13:43] Christian talks about the enumeration scheme CWE: common weakness enumeration, which basically assigns a number to each risk or attack.

[17:00] How should people be logging into their web sessions now with .NET7?

[18:31] The major mistake you can make these days is to write your own authentication mechanism.

[23:57] What is Christian's favorite mechanism today for securing HTTP web services?

[31:05] What are some of the tools Christian always reaches for, and how do we differentiate between static auditing and dynamically auditing an application?

Mentioned in this Episode:

Clear Measure Way

Architect Forum

Software Engineer Forum

Programming with Palermo — New Video Podcast! Email us programming@palermo.network

Clear Measure, Inc. (Sponsor)

.NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon!

Jeffrey Palermo's Twitter — Follow to stay informed about future events!

Architect Tips — Video podcast!

Azure DevOps

Christian Microsoft Profile

ASP.NET Core Security

Christian's Books on Amazon

Configuring Code Scanning for a Repository

Want to Learn More?

Visit AzureDevOps.Show for show notes and additional episodes.

Upptäck Premium

Prova 14 dagar kostnadsfritt

Skaffa Premium

Avsnitt(387)

Greg Leonardo Takes an Azure Deep Dive - Episode 91

This week, return guest Greg Leonardo joins the podcast! Greg is a Cloud Architect that assists organizations with cloud adoption and innovation. He has been working in the IT industry since his time ...

1 Juni 202033min

Heather Downing on .NET 5 and Other Things - Episode 90

Joining Jeffrey Palermo this week is the curious through-and-through international speaker and software engineer, Heather Downing! Heather is a passionate coder and entrepreneur. She has experience ...

25 Maj 202038min

Microsoft Build Week with Jeffrey Palermo - Episode 89

Join Jeffrey Palermo this week for a quick solo episode about the virtual Microsoft Build Conference! The conference is happening over May 19th-20th and is entirely free this year — so be sure to regi...

18 Maj 202012min

Michael Washington on the State of Blazor - Episode 88

In this episode, Jeffrey Palermo is speaking with Michael Washington, an ASP.NET and C# programmer! Michael has extensive knowledge in process improvement, billing systems, and student information sys...

11 Maj 202052min

Maria Naggaga on .NET Interactive - Episode 87

Joining Jeffery Palermo today is Maria Naggaga! Maria is a Senior Program Manager on the .NET team at Microsoft building .NET Interactive, which delivers interactive experiences both online and offlin...

4 Maj 202030min

Shawn Weisfeld on DevOps Certifications - Episode 86

Joining Jeffrey Palermo today is Cloud Solution Architect at Microsoft, Shawn Weisfeld! Shawn works on the One Commercial Partner team helping Microsoft Partners architect solutions that run on Azure....

27 Apr 202036min

Gael Fraiteur on DevOps at PostSharp - Episode 85

Gael Fraiteur is the founder & CEO of PostSharp. At PostSharp, Gael and his teams help make C# better so you can get back to the bright side of coding. Their mission is to help software developers sto...

20 Apr 202031min

Jay Harris on Distributed DevOps - Episode 84

This week, Jay Harris is joining the podcast! Jay is an entrepreneur, speaker, software consultant, and President of Arana Software. He has been developing on the web since 1995. He has been awarded a...

13 Apr 202037min

Allt en och samma app

Lyssna på dina favoritpoddar och ljudböcker på ett och samma ställe.

Noga utvalt innehåll

Njut av handplockade tips som passar din smak – utan ändlöst scrollande.

Fortsätt när du vill

Fortsätt lyssna där du slutade – även offline.

Premium

99 kr/ månad

Tillgång till alla Premium-poddar
Reklamfritt premium-innehåll
Avsluta när du vill

Prova 14 dagar gratis

Premium

129 kr/ månad

Tillgång till alla Premium-poddar
Reklamfritt premium-innehåll
Avsluta när du vill
Ett extra konto

Prova 14 dagar gratis

Populärt inom Politik & nyheter

Berättelserna och rösterna du älskar att lyssna på

Obegränsad lyssning på alla dina favoritpoddar och ljudböcker

Upptäck Premium