Verification is an important phase of developing secure software that is not always addressed in depth that includes dynamic analysis and fuzzing testing.
Since 2003, application security researchers and experts from all over the world at the Open Web Application Security Project (OWASP) have carefully monitored the state of web application security and produced an awareness document that is acknowledged and relied on by organizations worldwide, including the PCI Council, DoD, FTC, and countless others.
Respondents to a new (ISC)2 study identified application vulnerabilities as their top security concern.
Jim Manico is the VP of Security Architecture for WhiteHat Security.
84 percent of web applications from public companies were deemed unacceptable when measured against the OWASP Top 10 most frequently exploited web application vulnerabilities, says security testing firm Veracode in a feature supplement of its annual "State of Software Security Report".