OWASP AppSec 2010: OWASP Top 10 2010 1/3

Clip 1/3
Speaker: Dave Wichers, Aspect Security and OWASP Foundation

This presentation will cover the OWASP Top 10 - 2010 (final version). The OWASP Top 10 was originally released in 2003 to raise awareness of the importance of application security. As the field evolves, the Top 10 needs to be periodically updated to keep with up with the times. The Top 10 was updated in 2004 and the last update was in 2007, where it introduced Cross Site Request Forgery (CSRF) as the big new emerging web application security risk.

This update will be based on more sources of web application vulnerability information than the previous versions were when determining the new Top 10. It will also present this information in a more concise, compelling, and consumable manner, and include strong references to the many new openly available resources that can help address each issue, particularly OWASP's new Enterprise Security API (ESAPI) and Application Security Verification Standard (ASVS) projects.

A significant change for this update will be that the OWASP Top 10 will be focused on the Top 10 Risks to Web Applications, not just the most common vulnerabilities.

For more information click here (http://bit.ly/aeSvg2)

Category:

Science & Technology

Tags:

• SebastienDeleersnyder
• Day2
• Track1
• 14301505389
• clip1

License:

Standard YouTube License