News Feed
Jobs Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Jim Bird:
How to Cheat at Application Security
September 13, 2012 @ 10:42:22

Jim Bird has a new post with links to a few different resources helping you "cheat" at application security - links to cheat sheets with highlights of key points to keep an eye out for.

Developers need to know a lot in order to build secure applications. Some of this is good software engineering and defensive design and programming - using (safe) APIs properly, carefully checking for errors and exceptions, adding diagnostics and logging, and never trusting anything from outside of your code (including data and other people's code). But there are also lots of technical details about security weaknesses and vulnerabilities in different architectures and platforms and technology-specific risks that you have to understand and that you have to make sure that you deal with properly. Even appsec specialists have trouble keeping up with all of it.

He links to several of the OWASP cheat sheets for things like:

0 comments voice your opinion now!
cheatsheet application security owasp list


blog comments powered by Disqus

Similar Posts

DevShed: Securing Your Web Application Against Attacks

Paul Reinheimer's Blog: A GUI for XHProf

Padraic Brady's Blog: Nanosecond Scale Remote Timing Attacks On PHP Apps: Take Them Seriously?

Smashing Magazine: Common Security Mistakes in Web Applications

Cyberlot\'s Blog: Searching Zend Frameworks mailing list


Community Events











Don't see your event here?
Let us know!


hack release framework symfony2 application introduction hhvm opinion overview code install podcast package composer facebook language component unittest security series

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework