OWASP AppSensor defines a conceptual framework, methodology and guidance to implement intrusion detection and automated response into an existing application. Over 50 detection points have been described together with a number of response actions. A methodology will be presented to develop an AppSensor implementation strategy which includes sensor selection and positioning, and determination of the appropriate type of response to block or mitigate attacks based on an analysis of business risk. A lightweight implementation will also be described for organisations wishing to pilot AppSensor in their applications.
Speaker bio will be posted shortly.