File:Application Security Verification Standard 4.0 - Andrew van der Stock.pdf

Vortrag (in Englisch): OWASP Application Security Verification Standard (ASVS) 4.0 (Andrew van der Stock, California) If you liked the OWASP Top 10 as 'appetizer' to web application security we are happy to serve you the latest version of the OWASP Application Security Verification Standard as 'main corse'. Newcomers will make first contacts with a broader overview about good practices for web applications. Long time users will learn about all the new controls, changes that required a complete renumbering of the ASVS, and how to leverage and fork the ASVS for your industry or company. One more thing, we will demonstrate a new attack technique that may not necessarily be well known, but everyone should know about. Andrew van der Stock is a long time security researcher and is the current co-lead of the OWASP Top 10 and OWASP Application Security Verification Standard, and OWASP Board member. Andrew has trained or spoken at many conferences worldwide, including Black Hat USA, OWASP AppSec USA, AppSec EU, AppSec Cali, AusCERT, and linux.conf.au .He received AusCERT/SC Magazine's Award for Individual Excellence in 2013.