The OWASP Top Ten Proactive Controls 2018 presented at ISSA 2019

by Jim Manico,

Summary : Software developers are the foundation of any application. In order to achieve secure software, developers must be supported and helped by the organization they author code for. As software developers author code that makes up a web application, they need to embrace and practice a wide variety of secure coding techniques. The OWASP Top Ten Proactive Controls (2018) is an OWASP documentation project that lists critical security techniques that should be included in every software development project. This document was written by developers for developers to assist those new to secure development.1) Define Security Requirements2) Leverage Security Frameworks and Libraries3) Secure Database Access4) Encode and Escape Data5) Validate All Inputs6) Implement Digital Identity7) Enforce Access Controls8) Protect Data Everywhere10) Handle All Errors and Exceptions