Posted by: Troy Tate
application development, application security, cross-site scripting, information security, internet security, OWASP, training, web application development, web security
If you do manage websites, then you should know about the Open Web Application Security Project (OWASP). This group is working to make web application security issues visible so organizations can make intelligent decisions about how to address the risks.
There is a great series of very short (5 minute) presentations from OWASP about web vulnerabilities. One of the most interesting is about cross site scripting (XSS) vulnerabilities. This is a huge issue and web application developers need to understand this threat and how to address it. Take a few minutes and watch the series. Maybe you will pick up something you never knew about web vulnerabilities and be able to better explain risks of certain applications to your organization.
These presentations are also focused on discussing the Consensus Audit Guidelines (CAG) and how they apply to application and service development.
Thanks for reading & let’s continue to be good network citizens!