OWASP Project:Secure Coding Quick Reference Guide

More documents

Recommendations

Info

Checklist Sections - Only 9 pages long ‣ Input Validation ‣ Output Encoding ‣ Authentication and Password Management ‣ Session Management ‣ Access Control ‣ Cryptographic Practices ‣ Data Protection ‣ Communication Security ‣ System Configuration ‣ Database Security ‣ File Management ‣ Memory Management ‣ General Coding Practices ‣ Error Handling and Logging OWASP 6
Checklist Practices Short and to the point Straight forward "do this" or "don't do that" Does not attempt to rank the practices Some practices are conditional recommendations that depend on the criticality of the system or information The security implications of not following any of the practices that apply to the application, should be clearly understood OWASP 7
Page 1 and 2: OWASP Secure Coding Practices Quick
Page 3 and 4: Project Structure / Localizations
Page 5: Sections of the Guide The bulk of
Page 9 and 10: Using the guide Scenario #1: Devel
Page 11 and 12: Using the guide continued Scenario
Page 13 and 14: A Secure Development Framework Guid

OWASP Project:Secure Coding Quick Reference Guide

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?