Applying security to web servers
OWASP's Top Ten list of security vulnerabilities has been a big hit with the banking industry--it's required reading for anyone developing e-commerce applications. But the list is really just a marketing tactic. Real security requires going beyond the simple Top Ten list and paying attention to the full (and much more complex) guidelines from both OWASP and WASC.
By Andy Dornan at IT Architect.
[ Read more ]