Difference between revisions of "Education Module Good Secure Development Practices"

From OWASP
Jump to: navigation, search
(New page: = Module Description = This module explains some good secure development practices when developping or deploying web applications as part of the [[:Category:OWASP Education Project|Educati...)
 
(Resources)
 
Line 24: Line 24:
 
= Resources =
 
= Resources =
 
== OWASP pointers ==
 
== OWASP pointers ==
* see ppt
+
* [[OWASP Guide Project]]
  
 
== External pointers ==
 
== External pointers ==
* see ppt
+
* [http://csrc.nist.gov/publications/PubsSPs.html NIST]
 +
* [http://www.cert.org/secure-coding/ CERT]
  
 
[[Category:OWASP Education Modules]]
 
[[Category:OWASP Education Modules]]

Latest revision as of 08:20, 1 November 2007

Module Description

This module explains some good secure development practices when developping or deploying web applications as part of the Education Project. Next to the Top 10 remedies this module provides some good secure development practices from the

  • OWASP Guide, covering e.g.
  • Validating User Input
  • Authentication
  • Authorization
  • Session Management
  • Using Interpreters
  • Crypto
  • Catching Errors
  • File System
  • Configuration
  • Web 2.0

Target audience

Novice.

Presentation

The presentation can be found in Good Secure Development Practices.

Normally this presentation is performed in 70 minutes.

Resources

OWASP pointers

External pointers