My blog has moved and can now be found at http://blog.aniljohn.com

No action is needed on your part if you are already subscribed to this blog via e-mail or its syndication feed.

Thursday, November 13, 2003
« MSDN Magazine (Nov 2003) - Dedicated to ... | Main | Security hole in Motorola MPx200 discove... »

The Open Web Application Security Project (OWASP) has monthly columns dedicated to security. OWASP "... was started in September 2000 with its mission to create an open source community where people could advance their knowledge about web application and web services security issues by either contributing their knowledge to the education of others or by learning about the topic from documentation and software produced by the project."

Column landing page is http://www.owasp.org/columns

Currently, there are columns devoted to:

  • Java Security
  • .NET Security
  • Web Security Management
  • Web Services Security
  • IIS Security

While you are out there, be sure to check out the OWASP Top Ten List [1], which "represents a broad consensus about what the most critical web application security flaws are. Project members include a variety of security experts from around the world who have shared their expertise to produce this list.

In addition to the information, the OWASP Top Ten list prioritizes the most critical flaws. By identifying what we believe to be the most serious categories of vulnerabilities, we are attempting to focus attention on a problem that has been ignored for far too long. Flaws in web application code represent a serious security risk to the majority of websites. Yet the vast majority of security spending focuses on network layer vulnerabilities."

[1] http://www.owasp.org/documentation/topten

[Now Playing: Ek Pal Ka Jeena - Lucky Ali]

Tags:: Security
11/13/2003 10:29 PM Eastern Standard Time  |  Comments [0]  |  Disclaimer  |  Permalink   
Comments are closed.