Top Ten Web Defenses presented at OWASP BASC 2012

by Jim Manico,

Tags: Security

Summary : We cannot firewall or patch our way to secure websites. In the past, security professionals thought firewalls, Secure Sockets Layer (SSL), patching, and privacy policies were enough. Today, however, these methods are outdated and ineffective, as attacks on prominent, well-protected websites are occurring every day. Organizations around the world rely on highly accurate, scalable and continuous Web security services to maintain the safety of their websites in todays hostile online environment. Website developers must also learn to code in a secure fashion to have any chance of providing organizations with proper defenses in the current threat-scape. The session will provide specific tips and guidelines to make website code both low risk and less vulnerable.