Education Module Embed within SDLC

= Module Description = This module explains the complete approach of Web Application Security when developping or deploying web applications as part of the Education Project. There is no silver bullet when it comes to securing web applications. This problem has to be addressed from different angles, covering the involved actors, processes: development as well as deployment and Technologies.
 * People Awareness and Education
 * Web Application Security Training
 * Security Requirements and Abuse Cases
 * Threat Modelling
 * Secure Design Guidelines
 * Secure Coding Guidelines and Security Code Review
 * Testing for web application security
 * Secure administration and Security within Change Management
 * Deployment WebAppSec Controls
 * WebAppSec Tools
 * Starting and improving an SDLC
 * Web Application Security Roles and Responsibilities

= Target audience = Novice.

= Presentation = The presentation can be found in Embed within SDLC.

= Resources =

OWASP pointers

 * see ppt

External pointers

 * see ppt