| [ naslovna ] | [ za webmastere ] |  |
security
07-02-2008 15:43 Industry View: Web Application Security Today - Are We All Insane? - CSO  Industry View: Web Application Security Today - Are We All Insane? CSO, MA - 5 hours ago This is analogous to today's approach to software security, and specifically Web application security. While the data (think credit card and Social Security ... >> Kompletan tekst: Google 07-02-2008 17:37 PCI-DSS references the outdated OWASP Top Ten I’m sure other people have noticed this, at least I hope so, but never mentioned it publicly. If you read PCI-DSS 1.1 section 6.5, the part that covers “Cover prevention of common coding vulnerabilities in software development processes”, you’ll notice the list is identical to that of the OWASP Top Ten 2004 while the latest version is 2007:6.5.1 Unvalidated input 6.5.2 Broken access control (for example, malicious use of user IDs) 6.5.3 Broken authentication and session m >> Kompletan tekst: Jeremiah Grossman 07-02-2008 15:43 Industry View: Web Application Security Today - Are We All Insane? - CSO Industry View: Web Application Security Today - Are We All Insane? CSO, MA - 5 hours ago This is analogous to today's approach to software security, and specifically Web application security. While the data (think credit card and Social Security ... >> Kompletan tekst: Google 07-02-2008 17:37 PCI-DSS references the outdated OWASP Top Ten I’m sure other people have noticed this, at least I hope so, but never mentioned it publicly. If you read PCI-DSS 1.1 section 6.5, the part that covers “Cover prevention of common coding vulnerabilities in software development processes”, you’ll notice the list is identical to that of the OWASP Top Ten 2004 while the latest version is 2007:6.5.1 Unvalidated input 6.5.2 Broken access control (for example, malicious use of user IDs) 6.5.3 Broken authentication and session m >> Kompletan tekst: Jeremiah Grossman 07-02-2008 15:43 Industry View: Web Application Security Today - Are We All Insane? - CSO Industry View: Web Application Security Today - Are We All Insane? CSO, MA - 6 hours ago This is analogous to today's approach to software security, and specifically Web application security. While the data (think credit card and Social Security ... >> Kompletan tekst: Google 07-02-2008 15:43 Industry View: Web Application Security Today - Are We All Insane? - CSO Industry View: Web Application Security Today - Are We All Insane? CSO, MA - 6 hours ago This is analogous to today's approach to software security, and specifically Web application security. While the data (think credit card and Social Security ... >> Kompletan tekst: Google 07-02-2008 21:48 Pass-The-Hash Toolkit v.1.4 released Changelog for this release: Support for XP SP 3 for whosthere/iam (whosthere-alt/iam-alt work on >> Kompletan tekst: security-database
|
|
© Security Net, kontakt [@] security-net [.] biz, Keywords