Azure & DevOps Podcast20 Feb 2023

Christian Wenz: ASP .NET Core Security - Episode 233

Christian Wenz works as a consultant, trainer, and author with a focus on web technologies and is the author or co-author of over 100 computer books. He regularly contributes to various IT magazines and speaks at conferences around the globe. Christian holds a "Diplom" (the German equivalent of a master's degree) in Computer Sciences, and one in Business Informatics. In his day job, he is one of the founders of the web agency Arrabiata Solutions (http://www.arrabiata.com/) with offices in Munich, Germany, and in London, UK. He also frequently works with development teams to make their applications better performing, more secure, and more reliable.

Topics of Discussion:

[2:51] Has Christian really written over 100 computer books? Christian talks about the books and the high points of technology that he has worked in.

[7:16] What is the OWASP (Open Web Application Security Project) Top 10 list?

[10:33] You always have to be aware that something may go wrong, and have a security mindset.

[12:05] Again and again, make sure that you understand the fundamentals of web app security, because eventually, you will make a mistake in your code.

[12:30] What is insecure design?

[13:43] Christian talks about the enumeration scheme CWE: common weakness enumeration, which basically assigns a number to each risk or attack.

[17:00] How should people be logging into their web sessions now with .NET7?

[18:31] The major mistake you can make these days is to write your own authentication mechanism.

[23:57] What is Christian's favorite mechanism today for securing HTTP web services?

[31:05] What are some of the tools Christian always reaches for, and how do we differentiate between static auditing and dynamically auditing an application?

Mentioned in this Episode:

Clear Measure Way

Architect Forum

Software Engineer Forum

Programming with Palermo — New Video Podcast! Email us programming@palermo.network

Clear Measure, Inc. (Sponsor)

.NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon!

Jeffrey Palermo's Twitter — Follow to stay informed about future events!

Architect Tips — Video podcast!

Azure DevOps

Christian Microsoft Profile

ASP.NET Core Security

Christian's Books on Amazon

Configuring Code Scanning for a Repository

Want to Learn More?

Visit AzureDevOps.Show for show notes and additional episodes.

Upptäck Premium

Prova 14 dagar kostnadsfritt

Skaffa Premium

Avsnitt(386)

Joseph Landes and Amol Dalvi on Windows Virtual Desktop - Episode 82

In today's episode, Jeffrey is speaking with two guests, Joseph Landes, the Chief Revenue Officer at Nerdio, and Amol Dalvi, the Vice President of Product Management Nerdio. They both do a lot with Az...

30 Mars 202036min

Heather Wilde on Managing Remote Teams - Episode 81

Joining Jeffrey Palermo today is the CTO of ROCeteer, Heather Wilde — who is also known as the "Unicorn Whisperer" due to her special focus on entrepreneurs. She is also a personal and professional Gr...

23 Mars 202035min

Ryan Demopoulos on WinUI - Episode 80

As listeners already know, The Azure DevOps Podcast is for developers shipping software with Microsoft technologies — and in today's episode, Jeffrey Palermo is joined by someone who makes said techno...

16 Mars 202040min

Jonathan Mills on Data Architecture in Azure - Episode 79

In this week's episode, Jeffrey Palermo is talking to Jonathan Mills — a Pluralsight Author, Technology Advisor, and Business Leader! As a member of the Multi-Cloud Team team at World Wide Technolo...

9 Mars 202032min

Iain Foulds on Learning Azure - Episode 78

Today's guest is Iain Foulds — a Senior Content Developer at Microsoft, focused on Azure technologies. He has spent more than a decade in the field as an engineer building and running virtualization e...

2 Mars 202039min

Paul Sheriff on How to be an Architect - Episode 77

This week on the podcast, Jeffrey Palermo is joined by an old friend of his, Paul Sheriff! Paul is a Business Technology Consultant and has over thirty years of experience architecting information sys...

24 Feb 202039min

Jeremy Likness on DevOps Automation - Episode 76

Today's guest is Jeremy Likness — an internationally selling author, keynote speaker, and professional coder with a personal mission to empower developers to be their best! Jeremy has worked on commer...

17 Feb 202039min

Mark Dunn on Developer Retirement - Episode 75

This week on the podcast, Jeffrey Palermo had the pleasure of visiting with Mark Dunn to record today's show! Mark is a long-time developer and software architect who was an original co-host on the .N...

10 Feb 202038min

Allt en och samma app

Lyssna på dina favoritpoddar och ljudböcker på ett och samma ställe.

Noga utvalt innehåll

Njut av handplockade tips som passar din smak – utan ändlöst scrollande.

Fortsätt när du vill

Fortsätt lyssna där du slutade – även offline.

Premium

99 kr/ månad

Tillgång till alla Premium-poddar
Reklamfritt premium-innehåll
Avsluta när du vill

Prova 14 dagar gratis

Premium

129 kr/ månad

Tillgång till alla Premium-poddar
Reklamfritt premium-innehåll
Avsluta när du vill
Ett extra konto

Prova 14 dagar gratis

Populärt inom Politik & nyheter

Berättelserna och rösterna du älskar att lyssna på

Obegränsad lyssning på alla dina favoritpoddar och ljudböcker

Upptäck Premium